Alternatives and similar repositories for larascan

Users that are interested in larascan are comparing it to the libraries listed below

• h1pmnh / sqli-dojo-docker

  View on GitHub
  A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment
  ☆45Jun 3, 2024Updated last year
• codingo / simple

  View on GitHub
  A collection of one off hacks and simple scripts
  ☆27Mar 21, 2023Updated 2 years ago
• SecFathy / BlockGPT

  View on GitHub
  Like DLP
  ☆11Jan 27, 2025Updated last year
• PortSwigger / encode-ip

  View on GitHub
  Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.
  ☆11Sep 22, 2023Updated 2 years ago
• PortSwigger / url-fuzzer-401-403-bypass

  View on GitHub
  A Burp extension to Fuzz URLs for HTTP parser inconsistencies
  ☆12Jan 9, 2024Updated 2 years ago
• queencitycyber / nucleiUI

  View on GitHub
  A slick, modern, privacy-focused web interface for viewing and analyzing Nuclei scan results. Built for pentesters & bug hunters who want…
  ☆26Mar 31, 2025Updated 10 months ago
• kankburhan / gampung

  View on GitHub
  Gampung tools for find nuclei template from github
  ☆12Sep 6, 2023Updated 2 years ago
• wfinn / redirex

  View on GitHub
  tool that generates bypasses for open redirects
  ☆52Apr 18, 2022Updated 3 years ago
• random-robbie / wayback-saver

  View on GitHub
  Saves pages to Wayback machine
  ☆13Dec 2, 2024Updated last year
• shubham-rooter / Xss-automation

  View on GitHub
  ☆11Apr 8, 2024Updated last year
• Defend-X / crawlex

  View on GitHub
  Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLs…
  ☆12May 28, 2023Updated 2 years ago
• Sudistark / BB-Writeups

  View on GitHub
  Will share some interesting writeups here :)
  ☆18Oct 18, 2023Updated 2 years ago
• roberreigada / wayback.sh

  View on GitHub
  Bash script to extract data from the Waybackmachine
  ☆11Mar 15, 2021Updated 4 years ago
• xhzeem / toxicache

  View on GitHub
  Go scanner to find web cache poisoning vulnerabilities in a list of URLs
  ☆149Feb 21, 2024Updated last year
• fyoorer / ffufsee

  View on GitHub
  Ffuf output browser
  ☆39Feb 25, 2023Updated 2 years ago
• hktalent / bug-bounty

  View on GitHub
  bounty collection
  ☆41Sep 1, 2024Updated last year
• Th0h0 / autopoisoner

  View on GitHub
  Web cache poisoning vulnerability scanner.
  ☆72May 5, 2022Updated 3 years ago
• X-Vector / android-scanner-ai

  View on GitHub
  A powerful static analysis tool that uses AI to scan Android APK files for security vulnerabilities and potential issues. The scanner dec…
  ☆27Apr 6, 2025Updated 10 months ago
• Sicks3c / Reconizer

  View on GitHub
  ☆38Nov 27, 2020Updated 5 years ago
• JoshMorrison99 / isXSS-Burp

  View on GitHub
  Passively check for XSS character encodings
  ☆18Updated this week
• gosirys / sqlmap

  View on GitHub
  Automatic SQL injection and database takeover tool
  ☆45Nov 27, 2025Updated 2 months ago
• bsysop / blind-ssrf-chains

  View on GitHub
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆17Jan 31, 2021Updated 5 years ago
• GManOfficial / IDOR-IN

  View on GitHub
  The IDOR IN works by systematically scanning a target web application and examining various endpoints, parameters, and data access points…
  ☆23Jun 25, 2023Updated 2 years ago
• dsecuredcom / vhost-fuzzer

  View on GitHub
  Tool to fuzz for interesting vhost.
  ☆23Jan 8, 2025Updated last year
• h1pmnh / bcstats

  View on GitHub
  A tool to download program information from Bugcrowd, for use by researchers to compare programs they are eligible to participate in
  ☆21Dec 22, 2022Updated 3 years ago
• random-robbie / grayhatwarfare-docs-finder

  View on GitHub
  Finds Documents On Cloud Assets Using grayhatwarfare API for short urls
  ☆23Mar 2, 2022Updated 3 years ago
• gwen001 / bxss

  View on GitHub
  Alternative to XSS Hunter for blind XSS.
  ☆51Dec 8, 2022Updated 3 years ago
• pikpikcu / js-finding

  View on GitHub
  JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various e…
  ☆47Apr 29, 2024Updated last year
• umair9747 / 4oFour

  View on GitHub
  A tech enumeration toolkit focused on 404 Not found pages.
  ☆25Oct 6, 2024Updated last year
• ferreiraklet / Airi

  View on GitHub
  Hidden input parameters finder
  ☆19Jul 10, 2023Updated 2 years ago
• gwen001 / detectify-cves

  View on GitHub
  Find CVEs that don't have a Detectify modules.
  ☆22Mar 28, 2023Updated 2 years ago
• nullenc0de / Cognitohunter

  View on GitHub
  A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…
  ☆21Jan 20, 2025Updated last year
• Hunt3r0x / zWATCHER

  View on GitHub
  zwatcher is a lightweight bash script for monitoring sub/domains or a list of sub/domains and javascript files. It compares HTTP status c…
  ☆21Nov 23, 2025Updated 2 months ago
• cyinnove / corser

  View on GitHub
  CORSER is a Golang CLI Application for Advanced CORS Misconfiguration Detection
  ☆60Oct 26, 2024Updated last year
• codingo / fastsub

  View on GitHub
  A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.
  ☆56Apr 25, 2022Updated 3 years ago
• h0tak88r / Recon88r

  View on GitHub
  Python/Bash automation customization script designed to automate the reconnaissance process
  ☆21Jan 28, 2024Updated 2 years ago
• gwen001 / gitlab-subdomains

  View on GitHub
  Find subdomains on GitLab.
  ☆104Apr 28, 2024Updated last year
• joefizz / autofindomain

  View on GitHub
  ☆24Jan 26, 2021Updated 5 years ago
• OWASP / www-project-top-25-parameters

  View on GitHub
  OWASP Foundation Web Respository
  ☆26Oct 11, 2025Updated 4 months ago