Alternatives and similar repositories for xssmap

Users that are interested in xssmap are comparing it to the libraries listed below

• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆276Updated 11 months ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆185Updated 4 years ago
• ARPSyndicate / kenzer-templates
  essential templates for kenzer [DEPRECATED]
  ☆117Updated 2 years ago
• Y000o / Payloads_xss_sql_bypass
  ☆183Updated 2 years ago
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆601Updated 4 years ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆239Updated last week
• Moaaz-0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆177Updated last year
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆265Updated last year
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆177Updated 6 years ago
• lwzSoviet / NoXss
  Faster xss scanner,support reflected-xss and dom-xss
  ☆445Updated 2 years ago
• vsec7 / BurpSuite-Xkeys
  A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
  ☆307Updated last year
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆292Updated 6 years ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆534Updated last year
• devploit / XORpass
  Encoder to bypass WAF filters using XOR operations.
  ☆254Updated 3 years ago
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆118Updated 3 years ago
• volkandindar / agartha
  A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
  ☆390Updated last week
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆254Updated this week
• geeknik / the-nuclei-templates
  Nuclei templates written by geeknik. Claude is my co-pilot. 🤖
  ☆288Updated 4 months ago
• tombstoneghost / TIWAP
  Totally Insecure Web Application Project (TIWAP)
  ☆176Updated last year
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆224Updated last year
• bl4de / dictionaries
  Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks
  ☆247Updated last month
• pyn3rd / Spring-Boot-Vulnerability
  ☆416Updated 3 years ago
• M4DM0e / DirDar
  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
  ☆453Updated last year
• tismayil / ohmybackup
  Scan Victim Backup Directories & Backup Files
  ☆182Updated 2 years ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆490Updated last year
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆225Updated 3 years ago
• Fadavvi / Sub-Drill
  A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
  ☆115Updated last year
• In3tinct / See-SURF
  Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.
  ☆335Updated 4 months ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite
  ☆795Updated 4 months ago
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆237Updated 3 years ago