Alternatives and similar repositories for See-SURF:

Users that are interested in See-SURF are comparing it to the libraries listed below

• jaeles-project / jaeles-signatures
  Default signature for Jaeles Scanner
  ☆319Updated 3 years ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆275Updated 4 years ago
• dark-warlord14 / JSScanner
  You can read the writeup on this script here
  ☆272Updated 4 years ago
• geeknik / the-nuclei-templates
  Nuclei templates written by us.
  ☆269Updated 3 years ago
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆295Updated 5 years ago
• allyomalley / LiveTargetsFinder
  Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…
  ☆364Updated 2 years ago
• mhmdiaa / second-order
  Second-order subdomain takeover scanner
  ☆387Updated 2 years ago
• defparam / tiscripts
  Turbo Intruder Scripts
  ☆221Updated 4 years ago
• MichaelStott / CRLF-Injection-Scanner
  Command line tool for testing CRLF injection on a list of domains.
  ☆162Updated last year
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆405Updated 2 years ago
• bp0lr / gauplus
  ☆290Updated 2 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆193Updated 3 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆301Updated 2 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆244Updated 2 years ago
• antichown / subdomain-takeover
  Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94
  ☆361Updated last year
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆112Updated 3 years ago
• mazen160 / xless
  The Serverless Blind XSS App
  ☆340Updated 2 months ago
• 0xdekster / ReconNote
  Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…
  ☆412Updated 4 years ago
• dwisiswant0 / gf-secrets
  Secret and/or credential patterns used for gf.
  ☆241Updated 2 years ago
• pikpikcu / XRCross
  XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…
  ☆336Updated last year
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆205Updated last year
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆157Updated 4 years ago
• BitTheByte / Monitorizer
  Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
  ☆273Updated 9 months ago
• cujanovic / Open-Redirect-Payloads
  Open Redirect Payloads
  ☆609Updated 6 months ago
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆527Updated 6 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆210Updated 3 years ago
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆245Updated 9 months ago
• SilverPoision / a-full-list-of-wordlists
  this contain the burp pack
  ☆206Updated 8 years ago
• ethicalhackingplayground / ssrf-tool
  ☆145Updated 2 years ago
• kaimi-io / web-fuzz-wordlists
  Common Web Managers Fuzz Wordlists
  ☆172Updated last month