Alternatives and similar repositories for xssmap:

Users that are interested in xssmap are comparing it to the libraries listed below

• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆271Updated 3 months ago
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆576Updated 4 years ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆182Updated 4 years ago
• Y000o / Payloads_xss_sql_bypass
  ☆182Updated last year
• zorox0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆171Updated 5 months ago
• shadowsock5 / Poc
  PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus
  ☆174Updated 10 months ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆244Updated 4 months ago
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆369Updated last week
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆743Updated 3 years ago
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆169Updated 5 years ago
• lwzSoviet / NoXss
  Faster xss scanner,support reflected-xss and dom-xss
  ☆446Updated last year
• tismayil / ohmybackup
  Scan Victim Backup Directories & Backup Files
  ☆178Updated last year
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆295Updated 5 years ago
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆234Updated 2 years ago
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆559Updated 2 years ago
• InitRoot / BurpJSLinkFinder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆773Updated last year
• ARPSyndicate / kenzer-templates
  essential templates for kenzer [DEPRECATED]
  ☆114Updated 2 years ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆492Updated last year
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆197Updated 10 months ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆274Updated 4 years ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆133Updated last month
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆489Updated last year
• jas502n / Grafana-CVE-2021-43798
  Grafana Unauthorized arbitrary file reading vulnerability
  ☆356Updated 2 years ago
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆115Updated 2 years ago
• RapidDNS / Afuzz
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆304Updated last year
• aldaor / HackerOneReports
  Here you can find mostly all disclosed h1 reports
  ☆348Updated 3 years ago
• In3tinct / See-SURF
  Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.
  ☆318Updated last week
• Fadavvi / Sub-Drill
  A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
  ☆112Updated 5 months ago
• tombstoneghost / TIWAP
  Totally Insecure Web Application Project (TIWAP)
  ☆172Updated last year
• API-Security / APISandbox
  Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.
  ☆396Updated 2 years ago