Alternatives and similar repositories for cr

Users that are interested in cr are comparing it to the libraries listed below

• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆55Updated 7 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆72Updated 5 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆104Updated last year
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆58Updated 5 years ago
• JGillam / burp-paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆157Updated last month
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆65Updated last year
• br3akp0int / GQLParser
  A repository for GraphQL Extension for Burp Suite
  ☆57Updated 6 years ago
• adityaks / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool
  ☆32Updated 11 years ago
• SmeegeSec / Burp-Importer
  Burp Suite Importer - Connect to multiple web servers while populating the sitemap.
  ☆47Updated 5 years ago
• ticarpi / my-pentesting-repo
  This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…
  ☆52Updated 5 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆52Updated 6 years ago
• dsopas / h1-search
  Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
  ☆64Updated 6 years ago
• EdOverflow / h1-cli
  A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.
  ☆39Updated 7 years ago
• appsecco / VyAPI
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆85Updated 5 years ago
• vavkamil / dkimsc4n
  Asynchronous wordlist based DKIM scanner
  ☆58Updated 4 years ago
• netscylla / JWT_Hacking
  Collection of scripts that aid in penetration testing of JSON Web Tokens
  ☆59Updated 6 years ago
• NetSPI / AWSSigner
  Burp Extension for AWS Signing
  ☆89Updated 7 months ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 6 years ago
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 4 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆47Updated 6 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆40Updated 11 years ago
• sailay1996 / offsec_WE
  learning case to prepare OSWE
  ☆37Updated 5 years ago
• ibr2 / Go-For-OSCP
  ☆18Updated 8 years ago
• PortSwigger / distribute-damage
  Evenly distributes scanner load across targets
  ☆92Updated 4 months ago
• dsopas / rfd-checker
  RFD Checker - security CLI tool to test Reflected File Download issues
  ☆64Updated 6 years ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆146Updated 6 years ago
• secvulture / dvta
  Damn Vulnerable Thick Client App
  ☆150Updated 5 years ago
• msaponja / Manual
  The project is based on Ben Clark's book: Red Team Field Manual.
  ☆57Updated 8 years ago
• maK- / scanomaly-2years
  This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping
  ☆48Updated 5 years ago
• si9int / Acamar
  A Python3 based single-file subdomain enumerator
  ☆89Updated 5 years ago