Alternatives and similar repositories for WAScan

Users that are interested in WAScan are comparing it to the libraries listed below

• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆46Updated 2 years ago
• pikpikcu / nuubi
  Nuubi Tools (Information-ghatering|Scanner|Recon.)
  ☆86Updated 5 years ago
• SomeKirill / wordlist_generator
  Unique wordlist generator of unique wordlists.
  ☆42Updated 2 years ago
• luisfontes19 / CSRFER
  Tool to generate csrf payloads based on vulnerable requests
  ☆64Updated 4 years ago
• secdec / xssmap
  Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
  ☆150Updated 2 years ago
• Knowledge-Wisdom-Understanding / recon
  Enumerate a target Based off of Nmap Results
  ☆78Updated last year
• bl4ckmamb4 / OpenRelayMagic
  Tool to find SMTP servers vulnerable to open relay
  ☆82Updated 5 years ago
• nycto-hackerone / nycto-dork
  dork scanner with Sqli and Lfi testing
  ☆29Updated 7 years ago
• N1ckDunn / Exploitivator
  Automate Metasploit scanning and exploitation
  ☆115Updated 3 weeks ago
• yasserjanah / CVE-2020-5902
  exploit code for F5-Big-IP (CVE-2020-5902)
  ☆43Updated 2 years ago
• roottusk / xforwardy
  Host Header Injection Scanner
  ☆45Updated 4 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆101Updated 10 months ago
• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆42Updated last year
• awnumar / blind-sql-bitshifting
  A blind SQL injection module that uses bitshfting to calculate characters.
  ☆129Updated 3 years ago
• devploit / put2win
  Script to automate PUT HTTP method exploitation to get shell
  ☆125Updated 5 years ago
• JoshuaMart / PwnedPasswordsChecker
  Search (offline) if your password (NTLM or SHA1 format) has been leaked (HIBP passwords list v8)
  ☆60Updated 11 months ago
• iGotRootSRC / Dorkers
  Dorks for Google, Shodan and BinaryEdge
  ☆144Updated 5 years ago
• m8sec / enumdb
  Relational database brute force and post exploitation tool for MySQL and MSSQL
  ☆224Updated last year
• viperbluff / Firebase-Extractor
  A tool written in python for scraping firebase data
  ☆43Updated 5 years ago
• andripwn / PayloadsAll
  A list of useful payloads and bypass for Web Application Security and Pentest/CTF
  ☆47Updated 6 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• BitTheByte / Eagle
  Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities
  ☆126Updated 2 years ago
• lanmaster53 / sqli-exploiter
  Tool for exploiting SQL injection vulnerabilities that sqlmap can't find.
  ☆96Updated 7 years ago
• leobeosab / sharingan
  Offensive Security recon tool
  ☆92Updated 3 years ago
• jpiechowka / shodan-parser
  Python script to parse JSON data exported from SHODAN nad create IP:PORT list to use with other tools
  ☆25Updated 7 years ago
• ethicalhackingplayground / xsspwn
  Cross-Site-Scripting (XSS) Automatic Scanner
  ☆43Updated 4 years ago
• sparshkulshrestha / LazyRecon
  Subdomain discovery using Sublist3r, certspotter, crt.sh , censys and amass . Subdomain bruteforcing using Gobuster and Resolve hosts usi…
  ☆17Updated 10 months ago
• YasserGersy / cazador_unr
  Hacking tools
  ☆147Updated 6 months ago
• 003random / ICU
  An Extended, Modulair, Host Discovery Framework
  ☆43Updated 6 years ago
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆135Updated 3 years ago