Alternatives and similar repositories for xssmap

Users that are interested in xssmap are comparing it to the libraries listed below

• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆281Updated last year
• Y000o / Payloads_xss_sql_bypass
  ☆183Updated 2 years ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆185Updated 4 years ago
• ARPSyndicate / kenzer-templates
  essential templates for kenzer [DEPRECATED]
  ☆117Updated 2 years ago
• Moaaz-0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆177Updated last year
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆181Updated 6 years ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆244Updated last month
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆608Updated 5 years ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆270Updated 2 weeks ago
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆293Updated 6 years ago
• vsec7 / BurpSuite-Xkeys
  A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
  ☆309Updated last year
• bl4de / dictionaries
  Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks
  ☆249Updated 3 months ago
• tombstoneghost / TIWAP
  Totally Insecure Web Application Project (TIWAP)
  ☆178Updated 2 years ago
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆237Updated 3 years ago
• lwzSoviet / NoXss
  Faster xss scanner,support reflected-xss and dom-xss
  ☆447Updated 2 years ago
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆257Updated last week
• tismayil / ohmybackup
  Scan Victim Backup Directories & Backup Files
  ☆182Updated 2 years ago
• shadowsock5 / Poc
  PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus
  ☆179Updated 4 months ago
• volkandindar / agartha
  A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
  ☆392Updated last week
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆118Updated 3 years ago
• M4DM0e / DirDar
  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
  ☆453Updated 2 years ago
• geeknik / the-nuclei-templates
  Nuclei templates written by geeknik. Claude is my co-pilot. 🤖
  ☆291Updated 6 months ago
• In3tinct / See-SURF
  Security tool (now AI powered 🤖) to find potential vulnerable Server Side Request Forgery (SSRF) parameters.
  ☆353Updated last week
• devploit / XORpass
  Encoder to bypass WAF filters using XOR operations.
  ☆255Updated 3 years ago
• PortSwigger / sqli-py
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆94Updated 8 months ago
• 0xDexter0us / Log4J-Scanner
  Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth.
  ☆102Updated 4 years ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆136Updated 3 weeks ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆535Updated 2 years ago
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆225Updated last year
• PortSwigger / hackvertor
  ☆99Updated 2 weeks ago