Alternatives and similar repositories for asset-discovery

Users that are interested in asset-discovery are comparing it to the libraries listed below

• codewatchorg / Burp-IndicatorsOfVulnerability
  Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack
  ☆41Updated 2 years ago
• GuayoyoCyber / CVE-2021-21975
  Nmap script to check vulnerability CVE-2021-21975
  ☆28Updated 4 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆76Updated 4 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆46Updated 2 years ago
• Static-Flow / BurpSuiteTeamServer
  This is the Go Server that relays all HTTP requests and responses between clients.
  ☆27Updated last year
• ankitk323 / ImgRce
  Image Tragick Exploit Tool Using Burp Collaborator
  ☆36Updated last year
• redhuntlabs / BurpSuite-Asset_History
  ☆36Updated 5 months ago
• samwcyo / CVE-2021-27651-PoC
  RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2
  ☆60Updated 4 years ago
• luke-goddard / LFI-Fuzzer-Burp-Suite
  Local File Inclusion Burp-Suite Intruder Payload Generator Plugin
  ☆40Updated 4 years ago
• vp777 / metahttp
  A bash script that automates the scanning of a target network for HTTP resources through XXE
  ☆38Updated 4 years ago
• nullenc0de / Project-X
  Reconnaisance Tool
  ☆11Updated 5 years ago
• ZephrFish / BurpFeed
  Hacked together script for feeding urls into Burp's Sitemap
  ☆93Updated 2 months ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆65Updated 4 years ago
• osamahamad / CVE-2020-9484-Mass-Scan
  CVE-2020-9484 Mass Scanner, Scan a list of urls for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE
  ☆32Updated 5 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆54Updated 5 years ago
• ascr0b / PCWT
  ☆47Updated 4 years ago
• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆42Updated last year
• PortSwigger / additional-scanner-checks
  Collection of scanner checks missing in Burp
  ☆31Updated 5 years ago
• PortSwigger / sqlmap-dns-collaborator
  Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap
  ☆36Updated 3 years ago
• nuncan / slurp
  The original slurp source
  ☆33Updated 6 years ago
• ba0zi / Spring-Boot-Actuator-Exploit
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆22Updated 6 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆41Updated 4 years ago
• Keramas / mssqli-duet
  SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
  ☆91Updated 5 years ago
• S1lkys / CVE-2020-15906
  Writeup of CVE-2020-15906
  ☆48Updated 4 years ago
• C-Sto / GoGitDumper
  Dump exposed HTTP .git fast
  ☆50Updated 2 years ago
• SomeKirill / wordlist_generator
  Unique wordlist generator of unique wordlists.
  ☆42Updated last year
• KathanP19 / portscan.sh
  All in one port scanning script.
  ☆68Updated 5 years ago
• hoodoer / WP-XSS-Admin-Funcs
  JavaScript functions intended to be used as an XSS payload against a WordPress admin account.
  ☆54Updated 4 years ago
• cybercdh / dirlstr
  Finds Directory Listings or open S3 buckets from a list of URLs
  ☆53Updated 3 years ago