Alternatives and similar repositories for xxe-workshop

Users that are interested in xxe-workshop are comparing it to the libraries listed below

• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆65Updated 4 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆111Updated last year
• dariusztytko / vhosts-sieve
  Searching for virtual hosts among non-resolvable domains
  ☆88Updated 5 years ago
• nccgroup / CollaboratorPlusPlus
  ☆148Updated 3 years ago
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆92Updated 2 years ago
• ptswarm / ptswarm-twitter
  ☆76Updated 4 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated last year
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆52Updated 3 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆53Updated 2 years ago
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆98Updated last year
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆87Updated 8 months ago
• michael1026 / trashcompactor
  ☆65Updated 2 years ago
• h4ckboy19 / XXE_A_TO_Z
  ☆44Updated 3 years ago
• bcoles / jira_scan
  A simple remote scanner for Atlassian Jira
  ☆121Updated 2 years ago
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆183Updated 2 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆71Updated 3 years ago
• TROUBLE-1 / White-box-pentesting
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆92Updated last year
• chanpu9 / OSWE
  Preparation for OSWE
  ☆42Updated 5 years ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Updated 4 years ago
• neex / ghostinthepdf
  ☆166Updated 3 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆123Updated 5 years ago
• shoebpate1 / Web-CTF-Challenges
  Collection of quirky behaviours of code and the CTF challenges that I made around them.
  ☆27Updated 4 years ago
• trickest / log4j
  Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
  ☆110Updated 3 years ago
• Rhynorater / reports
  ☆59Updated 11 months ago
• ignis-sec / puff
  Clientside vulnerability / reflected xss fuzzer
  ☆150Updated last year
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆75Updated 2 years ago
• Cache-Money / chronorace
  ☆71Updated 3 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆119Updated 4 years ago