Alternatives and similar repositories for bypass-waf

Users that are interested in bypass-waf are comparing it to the libraries listed below

• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆46Updated 2 years ago
• ZephrFish / BurpFeed
  Hacked together script for feeding urls into Burp's Sitemap
  ☆93Updated 6 months ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• 0xbharath / assets-from-spf
  A Python script to parse net blocks & domain names from SPF record
  ☆85Updated 5 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆65Updated 4 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆155Updated 5 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆64Updated 3 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆41Updated 5 years ago
• crawl3r / PortswiggerXSS
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆74Updated 4 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆102Updated last year
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆109Updated 9 years ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆110Updated 3 years ago
• Quitten / XSSor
  XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…
  ☆62Updated 4 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆103Updated 5 years ago
• vavkamil / XSSwagger
  A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks
  ☆60Updated 6 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆85Updated 4 years ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆57Updated 6 years ago
• codewatchorg / Burp-IndicatorsOfVulnerability
  Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack
  ☆41Updated 2 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆91Updated 6 years ago
• nikhil1232 / Bucket-Flaws
  Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations
  ☆58Updated 5 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆83Updated 3 years ago
• JGillam / burp-paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆158Updated 4 months ago
• hahwul / s3reverse
  The format of various s3 buckets is convert in one format. for bugbounty and security testing.
  ☆86Updated 2 years ago
• profmoriarity / wfuxx
  web-based-fuzzer
  ☆32Updated 5 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆55Updated 5 years ago
• laconicwolf / burp-extensions
  A collection of scripts to extend Burp Suite
  ☆142Updated 6 years ago
• ankitk323 / ImgRce
  Image Tragick Exploit Tool Using Burp Collaborator
  ☆37Updated last year
• cybercdh / dirlstr
  Finds Directory Listings or open S3 buckets from a list of URLs
  ☆53Updated 3 years ago
• tarunkant / EndPoint-Finder
  Finds the End-Points in JavaScript files
  ☆97Updated 4 years ago