Alternatives and similar repositories for STEWS

Users that are interested in STEWS are comparing it to the libraries listed below

• PalindromeLabs / WebSockets-Playground

  View on GitHub
  Jumpstart multiple WebSocket servers quickly
  ☆32Nov 23, 2021Updated 4 years ago
• PalindromeLabs / awesome-websocket-security

  View on GitHub
  Awesome information for WebSockets security research
  ☆300Jan 10, 2022Updated 4 years ago
• MayankPandey01 / Jira-Lens

  View on GitHub
  Fast and customizable vulnerability scanner For JIRA written in Python
  ☆345Dec 31, 2024Updated last year
• dolevf / graphw00f

  View on GitHub
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆807Jun 9, 2025Updated 8 months ago
• swisskyrepo / GraphQLmap

  View on GitHub
  GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
  ☆1,617Mar 11, 2024Updated last year
• hahwul / RegexPassive

  View on GitHub
  🔭 Collection of regexp pattern for security passive scanning
  ☆116Feb 18, 2023Updated 2 years ago
• raverrr / plution

  View on GitHub
  Prototype pollution scanner using headless chrome
  ☆219Jul 27, 2022Updated 3 years ago
• Hackmanit / Web-Cache-Vulnerability-Scanner

  View on GitHub
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆1,145Jan 21, 2026Updated 3 weeks ago
• kosmosec / proto-find

  View on GitHub
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆65Jan 9, 2024Updated 2 years ago
• doyensec / inql

  View on GitHub
  InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…
  ☆1,723Feb 5, 2026Updated last week
• nicholasaleks / CrackQL

  View on GitHub
  CrackQL is a GraphQL password brute-force and fuzzing utility.
  ☆346Aug 3, 2024Updated last year
• forcesunseen / graphquail

  View on GitHub
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆205Aug 5, 2024Updated last year
• dwisiswant0 / ppfuzz

  View on GitHub
  A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
  ☆657Aug 28, 2025Updated 5 months ago
• hahwul / authz0

  View on GitHub
  🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
  ☆426Dec 5, 2025Updated 2 months ago
• jaeles-project / jaeles

  View on GitHub
  The Swiss Army knife for automated Web Application Testing
  ☆2,324May 8, 2024Updated last year
• hakluke / hakoriginfinder

  View on GitHub
  Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
  ☆975Jan 12, 2024Updated 2 years ago
• ticarpi / jwt_tool

  View on GitHub
  A toolkit for testing, tweaking and cracking JSON Web Tokens
  ☆6,347May 1, 2025Updated 9 months ago
• random-robbie / wayback-saver

  View on GitHub
  Saves pages to Wayback machine
  ☆13Dec 2, 2024Updated last year
• assetnote / batchql

  View on GitHub
  GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
  ☆404Dec 24, 2022Updated 3 years ago
• edoardottt / csprecon

  View on GitHub
  Discover new target domains using Content Security Policy
  ☆501Updated this week
• defparam / smuggler

  View on GitHub
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆2,059Jan 2, 2024Updated 2 years ago
• mzfr / liffy

  View on GitHub
  Local file inclusion exploitation tool
  ☆925Oct 1, 2025Updated 4 months ago
• gsmith257-cyber / GraphCrawler

  View on GitHub
  GraphQL automated security testing toolkit
  ☆332Feb 20, 2024Updated last year
• BishopFox / jsluice

  View on GitHub
  Extract URLs, paths, secrets, and other interesting bits from JavaScript
  ☆1,755May 22, 2024Updated last year
• p0dalirius / webapp-wordlists

  View on GitHub
  This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contai…
  ☆533Dec 4, 2024Updated last year
• assetnote / kiterunner

  View on GitHub
  Contextual Content Discovery Tool
  ☆3,085Apr 29, 2024Updated last year
• xnl-h4ck3r / xnLinkFinder

  View on GitHub
  A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets
  ☆1,515Jan 15, 2026Updated 3 weeks ago
• oldboy21 / SMBSR

  View on GitHub
  Lookup for interesting stuff in SMB shares
  ☆150Jun 16, 2023Updated 2 years ago
• Sh1Yo / x8

  View on GitHub
  Hidden parameters discovery suite
  ☆2,017Sep 8, 2024Updated last year
• BishopFox / eyeballer

  View on GitHub
  Convolutional neural network for analyzing pentest screenshots
  ☆1,278Feb 19, 2024Updated last year
• BishopFox / cloudfox

  View on GitHub
  Automating situational awareness for cloud penetration tests.
  ☆2,289Feb 5, 2026Updated last week
• neex / http2smugl

  View on GitHub
  ☆561Mar 27, 2025Updated 10 months ago
• hahwul / jwt-hack

  View on GitHub
  JSON Web Token Hack Toolkit
  ☆972Updated this week
• s0md3v / Parth

  View on GitHub
  Heuristic Vulnerable Parameter Scanner
  ☆602Jan 8, 2024Updated 2 years ago
• wfinn / redirex

  View on GitHub
  tool that generates bypasses for open redirects
  ☆52Apr 18, 2022Updated 3 years ago
• six2dez / reconftw

  View on GitHub
  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…
  ☆7,192Updated this week
• initstring / cloud_enum

  View on GitHub
  Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
  ☆2,012Jul 12, 2025Updated 7 months ago
• Charlie-belmer / nosqli

  View on GitHub
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆403Oct 31, 2021Updated 4 years ago
• trickest / find-gh-poc

  View on GitHub
  Find CVE PoCs on GitHub
  ☆160Aug 1, 2025Updated 6 months ago