Alternatives and similar repositories for xssmap

Users that are interested in xssmap are comparing it to the libraries listed below

• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆275Updated 8 months ago
• Y000o / Payloads_xss_sql_bypass
  ☆182Updated last year
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆183Updated 4 years ago
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆596Updated 4 years ago
• Moaaz-0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆174Updated 11 months ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆232Updated last month
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆259Updated 9 months ago
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆175Updated 6 years ago
• ARPSyndicate / kenzer-templates
  essential templates for kenzer [DEPRECATED]
  ☆116Updated 2 years ago
• volkandindar / agartha
  A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
  ☆378Updated this week
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆292Updated 6 years ago
• bl4de / dictionaries
  Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks
  ☆246Updated 3 months ago
• lwzSoviet / NoXss
  Faster xss scanner,support reflected-xss and dom-xss
  ☆443Updated last year
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆522Updated last year
• devploit / XORpass
  Encoder to bypass WAF filters using XOR operations.
  ☆254Updated 3 years ago
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆117Updated 3 years ago
• vsec7 / BurpSuite-Xkeys
  A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
  ☆301Updated last year
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆251Updated this week
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆237Updated 3 years ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite
  ☆776Updated last month
• tismayil / ohmybackup
  Scan Victim Backup Directories & Backup Files
  ☆180Updated last year
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆223Updated last year
• shadowsock5 / Poc
  PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus
  ☆177Updated 2 months ago
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆225Updated 2 years ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆489Updated last year
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆135Updated 3 months ago
• M4DM0e / DirDar
  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
  ☆452Updated last year
• geeknik / the-nuclei-templates
  Nuclei templates written by geeknik. Claude is my co-pilot. 🤖
  ☆275Updated last month
• r3curs1v3-pr0xy / sub404
  A python tool to check subdomain takeover vulnerability
  ☆332Updated 2 years ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆407Updated 3 years ago