Alternatives and similar repositories for STEWS

Users that are interested in STEWS are comparing it to the libraries listed below

• carlospolop / fuzzhttpbypass
  This tool use fuuzzing to try to bypass unknown authentication methods, who knows...
  ☆250Updated 11 months ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆387Updated 3 years ago
• kleiton0x00 / ppmap
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆511Updated 3 years ago
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆258Updated last year
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆317Updated 3 weeks ago
• hakluke / hakip2host
  hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.
  ☆447Updated 3 years ago
• barrracud4 / image-upload-exploits
  This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…
  ☆337Updated 4 years ago
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆485Updated 3 years ago
• musana / mx-takeover
  mx-takeover focuses DNS MX records and detects misconfigured MX records.
  ☆356Updated 2 years ago
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆661Updated last year
• hansmach1ne / LFImap
  Local File Inclusion discovery and exploitation tool
  ☆319Updated 7 months ago
• Karmaz95 / crimson
  Web Application Security Testing Tools
  ☆245Updated last year
• MayankPandey01 / Jira-Lens
  Fast and customizable vulnerability scanner For JIRA written in Python
  ☆321Updated 7 months ago
• p0dalirius / webapp-wordlists
  This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contai…
  ☆520Updated 8 months ago
• nicholasaleks / CrackQL
  CrackQL is a GraphQL password brute-force and fuzzing utility.
  ☆337Updated last year
• dolevf / graphw00f
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆659Updated last month
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆355Updated 3 years ago
• trufflesecurity / xsshunter
  ☆474Updated 6 months ago
• swoops / eval_villain
  A Firefox Web Extension to improve the discovery of DOM XSS.
  ☆275Updated 8 months ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆266Updated 2 years ago
• hakluke / haktrails
  Golang client for querying SecurityTrails API data
  ☆564Updated last year
• trickest / mksub
  Generate tens of thousands of subdomain combinations in a matter of seconds
  ☆268Updated last year
• PortSwigger / ip-rotate
  Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
  ☆257Updated last year
• 0xsha / GoLinkFinder
  A fast and minimal JS endpoint extractor
  ☆369Updated 8 months ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆366Updated 2 months ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆517Updated last year
• iustin24 / chameleon
  ☆380Updated 2 years ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆226Updated 2 months ago
• edoardottt / csprecon
  Discover new target domains using Content Security Policy
  ☆469Updated last week
• ethicalhackingplayground / bxss
  Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.
  ☆326Updated 2 months ago