Alternatives and similar repositories for Auditing-Vulnerabilities

Users that are interested in Auditing-Vulnerabilities are comparing it to the libraries listed below

• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆86Updated 4 years ago
• Rhynorater / reports
  ☆60Updated last year
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆109Updated 3 years ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆91Updated 6 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆87Updated 4 years ago
• ptswarm / ptswarm-twitter
  ☆76Updated 4 years ago
• tehryanx / sprawl
  Expand urls into one url for each path depth
  ☆33Updated 5 years ago
• kiranreddyrebel / PostMessage_Fuzz_Tool
  #BugBounty #BugBounty Tools #WebDeveloper Tool
  ☆38Updated 3 months ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆47Updated 2 years ago
• vavkamil / XSSwagger
  A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks
  ☆60Updated 6 years ago
• xxux11 / http-methods-discloser
  ☆44Updated 4 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• cqsd / daily-commonspeak2
  commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …
  ☆41Updated 4 years ago
• melbadry9 / SSLEnum
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆43Updated this week
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆103Updated 5 years ago
• Universe1122 / smuggler.py
  HTTP request smuggling tools
  ☆18Updated 5 years ago
• honoki / tools
  A collection of simple tools and poc-builders
  ☆39Updated last month
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• InitRoot / fransRecon
  Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated…
  ☆32Updated 6 years ago
• hahwul / websocket-connection-smuggler
  websocket-connection-smuggler
  ☆68Updated 5 years ago
• hahwul / s3reverse
  The format of various s3 buckets is convert in one format. for bugbounty and security testing.
  ☆86Updated 2 years ago
• joefizz / autofindomain
  ☆24Updated 4 years ago
• dwisiswant0 / wadl-dumper
  Dump all available paths and/or endpoints on WADL file.
  ☆94Updated 2 weeks ago
• synopsys-sig / ATOR-Burp
  ☆83Updated last year
• crawl3r / PortswiggerXSS
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆72Updated 4 years ago
• ZephrFish / BurpFeed
  Hacked together script for feeding urls into Burp's Sitemap
  ☆93Updated 4 months ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆46Updated 2 years ago
• parrot409 / Parmy
  A extension for collecting parameters
  ☆25Updated 4 years ago