Alternatives and similar repositories for xssmap

Users that are interested in xssmap are comparing it to the libraries listed below

• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆183Updated 4 years ago
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆274Updated 6 months ago
• Y000o / Payloads_xss_sql_bypass
  ☆182Updated last year
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆587Updated 4 years ago
• ARPSyndicate / kenzer-templates
  essential templates for kenzer [DEPRECATED]
  ☆117Updated 2 years ago
• tombstoneghost / TIWAP
  Totally Insecure Web Application Project (TIWAP)
  ☆174Updated last year
• zorox0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆173Updated 8 months ago
• devploit / XORpass
  Encoder to bypass WAF filters using XOR operations.
  ☆253Updated 3 years ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆253Updated 7 months ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆227Updated last month
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆174Updated 5 years ago
• lwzSoviet / NoXss
  Faster xss scanner,support reflected-xss and dom-xss
  ☆445Updated last year
• vsec7 / BurpSuite-Xkeys
  A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
  ☆299Updated last year
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆373Updated last week
• shadowsock5 / Poc
  PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus
  ☆174Updated last week
• bl4de / dictionaries
  Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks
  ☆245Updated last month
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆236Updated 3 years ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆755Updated last month
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆293Updated 5 years ago
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆117Updated 3 years ago
• tismayil / ohmybackup
  Scan Victim Backup Directories & Backup Files
  ☆178Updated last year
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆514Updated last year
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆134Updated last month
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆223Updated 2 years ago
• M4DM0e / DirDar
  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
  ☆452Updated last year
• Fadavvi / Sub-Drill
  A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
  ☆113Updated 8 months ago
• alita-ido / PHP-File-Writer
  ☆25Updated 4 years ago
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆244Updated this week
• PortSwigger / sqli-py
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆92Updated last month
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆218Updated 10 months ago