Alternatives and similar repositories for awesome-websocket-security

Users that are interested in awesome-websocket-security are comparing it to the libraries listed below

• PalindromeLabs / WebSockets-Playground

  View on GitHub
  Jumpstart multiple WebSocket servers quickly
  ☆32Nov 23, 2021Updated 4 years ago
• PalindromeLabs / STEWS

  View on GitHub
  A Security Tool for Enumerating WebSockets
  ☆366Jan 10, 2022Updated 4 years ago
• dozernz / bugstropics

  View on GitHub
  Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk
  ☆10Aug 18, 2022Updated 3 years ago
• dwisiswant0 / ppfuzz

  View on GitHub
  A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
  ☆657Aug 28, 2025Updated 5 months ago
• laluka / bypass-url-parser

  View on GitHub
  bypass-url-parser
  ☆1,111Feb 7, 2026Updated last week
• MindPatch / lorsrf

  View on GitHub
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆297Sep 22, 2024Updated last year
• assetnote / blind-ssrf-chains

  View on GitHub
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆946Dec 31, 2021Updated 4 years ago
• httpvoid / writeups

  View on GitHub
  ☆1,201Sep 2, 2022Updated 3 years ago
• ja1sh / grepTheCurl

  View on GitHub
  One liner regex match to search inside JS files, using curl and grep!
  ☆29Dec 26, 2021Updated 4 years ago
• xnl-h4ck3r / urless

  View on GitHub
  De-clutter a list of URLs
  ☆384Feb 3, 2026Updated last week
• arainho / awesome-api-security

  View on GitHub
  A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…
  ☆3,637Nov 23, 2025Updated 2 months ago
• xnl-h4ck3r / GAP-Burp-Extension

  View on GitHub
  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
  ☆1,496Jan 8, 2026Updated last month
• akabe1 / OAUTHScan

  View on GitHub
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆175Oct 26, 2024Updated last year
• Karanxa / Bug-Bounty-Wordlists

  View on GitHub
  A repository that includes all the important wordlists used while bug hunting.
  ☆1,375Mar 11, 2023Updated 2 years ago
• Hackmanit / Web-Cache-Vulnerability-Scanner

  View on GitHub
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆1,145Jan 21, 2026Updated 3 weeks ago
• devploit / nomore403

  View on GitHub
  🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast…
  ☆1,490Feb 5, 2026Updated last week
• xnl-h4ck3r / xnLinkFinder

  View on GitHub
  A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets
  ☆1,515Jan 15, 2026Updated 3 weeks ago
• BishopFox / Imperva_gzip_WAF_Bypass

  View on GitHub
  ☆160Jan 7, 2022Updated 4 years ago
• swisskyrepo / SSRFmap

  View on GitHub
  Automatic SSRF fuzzer and exploitation tool
  ☆3,479Sep 4, 2025Updated 5 months ago
• emadshanab / Adobe-Experience-Manager

  View on GitHub
  ☆34Jun 23, 2021Updated 4 years ago
• BlackFan / client-side-prototype-pollution

  View on GitHub
  Prototype Pollution and useful Script Gadgets
  ☆1,581Jan 27, 2024Updated 2 years ago
• x0rr-dan / s1c0n

  View on GitHub
  simple recon tool to help you for searching vulnerability on web server
  ☆75Dec 30, 2025Updated last month
• musana / mx-takeover

  View on GitHub
  mx-takeover focuses DNS MX records and detects misconfigured MX records.
  ☆359Jul 17, 2023Updated 2 years ago
• ProZachJ / ducktales

  View on GitHub
  Python's handling of NaN is....interesting?broken?...this project illustrates the issue
  ☆13Dec 28, 2021Updated 4 years ago
• Th0h0 / autossrf

  View on GitHub
  Smart context-based SSRF vulnerability scanner.
  ☆361May 5, 2022Updated 3 years ago
• aacle / xss_payload

  View on GitHub
  ☆300Dec 9, 2022Updated 3 years ago
• hakluke / hakoriginfinder

  View on GitHub
  Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
  ☆975Jan 12, 2024Updated 2 years ago
• hisxo / JSpector

  View on GitHub
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆373Jul 25, 2023Updated 2 years ago
• HolyBugx / HolyTips

  View on GitHub
  A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
  ☆1,969Sep 5, 2021Updated 4 years ago
• bigb0sss / RedTeam-OffensiveSecurity

  View on GitHub
  Tools & Interesting Things for RedTeam Ops
  ☆2,250Updated this week
• imran-parray / Mind-Maps

  View on GitHub
  Mind-Maps of Several Things
  ☆2,623Jun 29, 2023Updated 2 years ago
• ticarpi / jwt_tool

  View on GitHub
  A toolkit for testing, tweaking and cracking JSON Web Tokens
  ☆6,347May 1, 2025Updated 9 months ago
• kosmosec / proto-find

  View on GitHub
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆65Jan 9, 2024Updated 2 years ago
• BlackFan / content-type-research

  View on GitHub
  Content-Type Research
  ☆657Jun 29, 2025Updated 7 months ago
• trickest / inventory

  View on GitHub
  Asset inventory of over 800 public bug bounty programs.
  ☆1,517Feb 14, 2025Updated last year
• gsmith257-cyber / GraphCrawler

  View on GitHub
  GraphQL automated security testing toolkit
  ☆332Feb 20, 2024Updated last year
• 0xdsm / Pinkerton

  View on GitHub
  🕵️ Python project to crawl for JavaScript files and search for secrets like API keys, authorization tokens, hardcoded credentials, etc.
  ☆426May 15, 2025Updated 8 months ago
• Sh1Yo / x8

  View on GitHub
  Hidden parameters discovery suite
  ☆2,017Sep 8, 2024Updated last year
• kleiton0x00 / Advanced-SQL-Injection-Cheatsheet

  View on GitHub
  A cheat sheet that contains advanced queries for SQL Injection of all types.
  ☆3,144May 13, 2023Updated 2 years ago