Alternatives and similar repositories for Auditing-Vulnerabilities

Users that are interested in Auditing-Vulnerabilities are comparing it to the libraries listed below

• Rhynorater / reports
  ☆60Updated last year
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• ptswarm / ptswarm-twitter
  ☆76Updated 5 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆84Updated 4 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆92Updated 6 years ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• profmoriarity / wfuxx
  web-based-fuzzer
  ☆32Updated 5 years ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆48Updated 2 years ago
• honoki / tools
  A collection of simple tools and poc-builders
  ☆39Updated 5 months ago
• ameenmaali / endpointdiff
  Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.
  ☆41Updated 6 years ago
• kiranreddyrebel / PostMessage_Fuzz_Tool
  #BugBounty #BugBounty Tools #WebDeveloper Tool
  ☆38Updated 7 months ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆111Updated 3 years ago
• tehryanx / sprawl
  Expand urls into one url for each path depth
  ☆33Updated 5 years ago
• Universe1122 / smuggler.py
  HTTP request smuggling tools
  ☆18Updated 5 years ago
• janmasarik / bugshop
  ☆44Updated 5 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆87Updated 4 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆46Updated 2 years ago
• rishuranjanofficial / JWTweak
  Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.
  ☆100Updated 6 months ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆104Updated 5 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆81Updated 4 years ago
• Leoid / chru
  ☆30Updated 3 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆65Updated 4 years ago
• Healdb / Gather
  URL Screenshot Utility
  ☆28Updated 2 years ago
• samirettali / dumpcn
  Get all the CNs from a list of domains
  ☆45Updated 4 years ago
• vavkamil / XSSwagger
  A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks
  ☆60Updated 6 years ago
• crawl3r / PortswiggerXSS
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆74Updated 4 years ago
• cqsd / daily-commonspeak2
  commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …
  ☆40Updated 4 years ago
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆66Updated 5 years ago