Alternatives and similar repositories for WAF-bypass-fuzz-payloads

Users that are interested in WAF-bypass-fuzz-payloads are comparing it to the libraries listed below

• HernanRodriguez1 / ScanMySQLiErrorBased-Nuclei
  ☆21Updated 2 years ago
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆55Updated 3 years ago
• faiyazahmad07 / SSTI_DETECTOR
  This tool allows you to find ssti vulnerability with ease!
  ☆20Updated 2 years ago
• c0brabaghdad1 / DVPA
  Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges
  ☆32Updated 3 years ago
• zeronine9 / Blind_SPOT
  Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI
  ☆27Updated 4 years ago
• mathis2001 / ParamFirstCheck
  ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …
  ☆35Updated last year
• ManasHarsh / Astra
  A tool for Subdomain takeovers detection
  ☆26Updated 2 years ago
• shanekhantaun9 / firex
  Automate tool for android pentesting to extract firebase url and check it is accessible or not.
  ☆8Updated 2 years ago
• mrofisr / gf-patterns
  A collection of useful grep patterns and tools by Tomnomnom for extracting specific values from text.
  ☆45Updated 2 months ago
• anmolksachan / JIRAya
  JIRA"YA is a vulnerability analyzer for JIRA instances. It runs active scans to identify vulnerabilities by interacting with the host and…
  ☆35Updated 10 months ago
• r00tkie / grep-pattern
  collection of various grep patterns collected from tomnomnom/gf and other places
  ☆22Updated 4 years ago
• xnl-h4ck3r / ScriptView-Burp-Extension
  A Burp Extension that makes it easier to view all script code on a Response.
  ☆16Updated last year
• samirettali / bounty-notes
  My bug bounty notes
  ☆32Updated 4 years ago
• gwen001 / extract-endpoints
  Extract endpoints from source files.
  ☆22Updated 2 years ago
• attacker-codeninja / Bug-Hunting-1
  The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down her…
  ☆15Updated last month
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆59Updated 2 years ago
• YazeedOliwah / Black_Viru5_Recon_v1.0
  These Repositories About My Recon Methodology To Give Some Idea For Other Hunter How To Do Recon
  ☆43Updated 2 years ago
• Az0x7 / payloadforall
  ☆25Updated last year
• KingOfBugbounty / KingRecon_DOD
  ☆76Updated last year
• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆31Updated last year
• R-s0n / Clear-Sky
  Bug Bounty Recon Automation Script -- Scan AWS IP Range Certs for Matching FQDN
  ☆25Updated 3 years ago
• hemantsolo / Host-Header-Injection-Vulnerability-Scanner
  Host Header Vulnerability Scanner Automated Tool
  ☆23Updated 2 months ago
• i5nipe / android-scripts
  Some simple scripts that I use during bug bounty hunting in Android Apps
  ☆28Updated 4 months ago
• 0xRTH / IISRecon
  IIS shortname scanner + bruteforce
  ☆52Updated last year
• theVulnerableMMII / oSkan
  This tool is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner, created by JayCyberSecurity
  ☆23Updated 3 years ago
• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 2 years ago
• s0md3v / wl
  convert case style of words
  ☆41Updated last year
• Ravaan21 / Chandrahasa
  A solid recon tool I use personally.
  ☆30Updated 2 years ago
• rix4uni / xsschecker
  xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.
  ☆21Updated 7 months ago
• TakSec / XSS-PoCs
  XSS PoCs to elevate your alert()
  ☆17Updated 2 years ago