Alternatives and similar repositories for XXE-study

Users that are interested in XXE-study are comparing it to the libraries listed below

• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated 2 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆128Updated 6 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆230Updated last year
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆129Updated 3 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆126Updated 2 years ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Updated 2 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆135Updated 2 years ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆64Updated 3 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 4 years ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆86Updated 4 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆112Updated 2 years ago
• ethicalhackingplayground / TProxer
  A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
  ☆185Updated 4 years ago
• 0xAwali / Blind-SSRF
  Nuclei Templates to reproduce Cracking the lens's Research
  ☆132Updated 4 years ago
• kunte0 / phar-jpg-polyglot
  Phar + JPG Polyglot generator and playground (CTF CODE)
  ☆97Updated 7 years ago
• ambionics / symfony-exploits
  Exploits targeting Symfony
  ☆213Updated last year
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆85Updated last month
• vavkamil / wp-update-confusion
  WordPress Plugin Update Confusion
  ☆67Updated 4 years ago
• aadityapurani / NodeJS-Red-Team-Cheat-Sheet
  NodeJS Red-Team Cheat Sheet
  ☆225Updated 6 years ago
• chenjj / Awesome-HTTPRequestSmuggling
  A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻
  ☆125Updated 3 years ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆64Updated 8 months ago
• imrannissar / Content-discovery
  ☆96Updated 5 years ago
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆225Updated last year
• payatu / vuln-nodejs-app
  ☆28Updated last year
• PortSwigger / auth-analyzer
  ☆110Updated last year
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆86Updated 5 years ago
• Sudistark / CTF-Writeups
  This repo contains solution for ctf challenges
  ☆38Updated last year
• 0xAwali / Virtual-Host
  Modified Nuclei Templates Version to FUZZ Host Header
  ☆52Updated 4 years ago
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆225Updated 3 years ago