PalindromeLabs/STEWS

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/PalindromeLabs/STEWS)

PalindromeLabs / STEWS

A Security Tool for Enumerating WebSockets

☆366

Alternatives and similar repositories for STEWS

Users that are interested in STEWS are comparing it to the libraries listed below

Sorting:

PalindromeLabs / WebSockets-Playground
View on GitHub
Jumpstart multiple WebSocket servers quickly
☆32Nov 23, 2021Updated 4 years ago
PalindromeLabs / awesome-websocket-security
View on GitHub
Awesome information for WebSockets security research
☆301Jan 10, 2022Updated 4 years ago
MayankPandey01 / Jira-Lens
View on GitHub
Fast and customizable vulnerability scanner For JIRA written in Python
☆344Dec 31, 2024Updated last year
dolevf / graphw00f
View on GitHub
graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
☆814Jun 9, 2025Updated 8 months ago
swisskyrepo / GraphQLmap
View on GitHub
GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
☆1,631Mar 11, 2024Updated last year
Hackmanit / Web-Cache-Vulnerability-Scanner
View on GitHub
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
☆1,153Jan 21, 2026Updated last month
hahwul / RegexPassive
View on GitHub
🔭 Collection of regexp pattern for security passive scanning
☆116Feb 18, 2023Updated 3 years ago
raverrr / plution
View on GitHub
Prototype pollution scanner using headless chrome
☆218Jul 27, 2022Updated 3 years ago
kosmosec / proto-find
View on GitHub
Let's check if your target is vulnerable for client side prototype pollution.
☆65Jan 9, 2024Updated 2 years ago
doyensec / inql
View on GitHub
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…
☆1,737Feb 16, 2026Updated 2 weeks ago
nicholasaleks / CrackQL
View on GitHub
CrackQL is a GraphQL password brute-force and fuzzing utility.
☆345Aug 3, 2024Updated last year
forcesunseen / graphquail
View on GitHub
Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
☆203Aug 5, 2024Updated last year
dwisiswant0 / ppfuzz
View on GitHub
A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
☆659Aug 28, 2025Updated 6 months ago
hahwul / authz0
View on GitHub
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
☆426Feb 20, 2026Updated 2 weeks ago
ticarpi / jwt_tool
View on GitHub
A toolkit for testing, tweaking and cracking JSON Web Tokens
☆6,402May 1, 2025Updated 10 months ago
jaeles-project / jaeles
View on GitHub
The Swiss Army knife for automated Web Application Testing
☆2,323May 8, 2024Updated last year
hakluke / hakoriginfinder
View on GitHub
Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
☆978Jan 12, 2024Updated 2 years ago
random-robbie / wayback-saver
View on GitHub
Saves pages to Wayback machine
☆12Dec 2, 2024Updated last year
assetnote / batchql
View on GitHub
GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
☆406Dec 24, 2022Updated 3 years ago
edoardottt / csprecon
View on GitHub
Discover new target domains using Content Security Policy
☆505Feb 7, 2026Updated 3 weeks ago
defparam / smuggler
View on GitHub
Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
☆2,062Jan 2, 2024Updated 2 years ago
mzfr / liffy
View on GitHub
Local file inclusion exploitation tool
☆929Oct 1, 2025Updated 5 months ago
gsmith257-cyber / GraphCrawler
View on GitHub
GraphQL automated security testing toolkit
☆333Feb 20, 2024Updated 2 years ago
p0dalirius / webapp-wordlists
View on GitHub
This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contai…
☆534Dec 4, 2024Updated last year
BishopFox / jsluice
View on GitHub
Extract URLs, paths, secrets, and other interesting bits from JavaScript
☆1,773May 22, 2024Updated last year
assetnote / kiterunner
View on GitHub
Contextual Content Discovery Tool
☆3,106Apr 29, 2024Updated last year
xnl-h4ck3r / xnLinkFinder
View on GitHub
A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets
☆1,529Jan 15, 2026Updated last month
oldboy21 / SMBSR
View on GitHub
Lookup for interesting stuff in SMB shares
☆150Jun 16, 2023Updated 2 years ago
BishopFox / eyeballer
View on GitHub
Convolutional neural network for analyzing pentest screenshots
☆1,280Feb 19, 2024Updated 2 years ago
Sh1Yo / x8
View on GitHub
Hidden parameters discovery suite
☆2,028Sep 8, 2024Updated last year
BishopFox / cloudfox
View on GitHub
Automating situational awareness for cloud penetration tests.
☆2,299Updated this week
neex / http2smugl
View on GitHub
☆562Mar 27, 2025Updated 11 months ago
hahwul / jwt-hack
View on GitHub
JSON Web Token Hack Toolkit
☆972Updated this week
s0md3v / Parth
View on GitHub
Heuristic Vulnerable Parameter Scanner
☆601Jan 8, 2024Updated 2 years ago
wfinn / redirex
View on GitHub
tool that generates bypasses for open redirects
☆51Apr 18, 2022Updated 3 years ago
six2dez / reconftw
View on GitHub
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…
☆7,280Updated this week
Charlie-belmer / nosqli
View on GitHub
NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
☆403Oct 31, 2021Updated 4 years ago
trickest / find-gh-poc
View on GitHub
Find CVE PoCs on GitHub
☆161Aug 1, 2025Updated 7 months ago
initstring / cloud_enum
View on GitHub
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
☆2,029Jul 12, 2025Updated 7 months ago