Alternatives and similar repositories for xssmap:

Users that are interested in xssmap are comparing it to the libraries listed below

• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆182Updated 4 years ago
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆578Updated 4 years ago
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆271Updated 3 months ago
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆235Updated 2 years ago
• Y000o / Payloads_xss_sql_bypass
  ☆182Updated last year
• zorox0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆171Updated 6 months ago
• shadowsock5 / Poc
  PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus
  ☆175Updated 2 weeks ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆744Updated 3 years ago
• ARPSyndicate / kenzer-templates
  essential templates for kenzer [DEPRECATED]
  ☆114Updated 2 years ago
• RapidDNS / Afuzz
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆304Updated last year
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆371Updated last month
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆116Updated 2 years ago
• ARPSyndicate / kenzer
  automated web assets enumeration & scanning [DEPRECATED]
  ☆289Updated 2 years ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆247Updated 5 months ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆133Updated 2 months ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆222Updated 3 weeks ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆275Updated 4 years ago
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆169Updated 5 years ago
• devploit / XORpass
  Encoder to bypass WAF filters using XOR operations.
  ☆253Updated 2 years ago
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆237Updated this week
• aldaor / HackerOneReports
  Here you can find mostly all disclosed h1 reports
  ☆350Updated 3 years ago
• lwzSoviet / NoXss
  Faster xss scanner,support reflected-xss and dom-xss
  ☆445Updated last year
• jas502n / Grafana-CVE-2021-43798
  Grafana Unauthorized arbitrary file reading vulnerability
  ☆358Updated 2 years ago
• InitRoot / BurpJSLinkFinder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆779Updated last year
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆607Updated last year
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆199Updated 10 months ago
• tismayil / ohmybackup
  Scan Victim Backup Directories & Backup Files
  ☆178Updated last year
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆561Updated 2 years ago
• tombstoneghost / TIWAP
  Totally Insecure Web Application Project (TIWAP)
  ☆172Updated last year
• bl4de / dictionaries
  Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks
  ☆240Updated last year