Alternatives and similar repositories for Auditing-Vulnerabilities

Users that are interested in Auditing-Vulnerabilities are comparing it to the libraries listed below

• Rhynorater / reports
  ☆60Updated last year
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆85Updated 4 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆103Updated 5 years ago
• parrot409 / Parmy
  A extension for collecting parameters
  ☆25Updated 5 years ago
• ptswarm / ptswarm-twitter
  ☆76Updated 4 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• dwisiswant0 / wadl-dumper
  Dump all available paths and/or endpoints on WADL file.
  ☆96Updated last week
• melbadry9 / SSLEnum
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆43Updated last week
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆47Updated 2 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• hahwul / s3reverse
  The format of various s3 buckets is convert in one format. for bugbounty and security testing.
  ☆86Updated 2 years ago
• tehryanx / sprawl
  Expand urls into one url for each path depth
  ☆33Updated 5 years ago
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• hahwul / websocket-connection-smuggler
  websocket-connection-smuggler
  ☆66Updated 5 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆87Updated 4 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆110Updated 3 years ago
• joefizz / autofindomain
  ☆24Updated 4 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆91Updated 6 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆46Updated 2 years ago
• honoki / tools
  A collection of simple tools and poc-builders
  ☆39Updated 4 months ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆83Updated 3 years ago
• payloadartist / recon
  NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.
  ☆79Updated 3 years ago
• pelaohxc / postMessageFinder
  ☆37Updated 5 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆65Updated 4 years ago
• xxux11 / http-methods-discloser
  ☆44Updated 4 years ago
• sw33tLie / ugly-scripts
  A collection of scripts for bug-bounty related stuff
  ☆39Updated 5 years ago
• samirettali / dumpcn
  Get all the CNs from a list of domains
  ☆45Updated 4 years ago
• janmasarik / bugshop
  ☆44Updated 5 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆66Updated 4 years ago