Alternatives and similar repositories for bypass-waf:

Users that are interested in bypass-waf are comparing it to the libraries listed below

• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆44Updated 2 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆60Updated 3 years ago
• 0xbharath / assets-from-spf
  A Python script to parse net blocks & domain names from SPF record
  ☆82Updated 4 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 4 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆82Updated 3 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆62Updated 3 years ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆41Updated 4 years ago
• Sambal0x / Recon-tools
  Some of my bug bounty tools
  ☆48Updated 5 years ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆56Updated 5 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆107Updated 3 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆54Updated 4 years ago
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆80Updated 2 years ago
• thelikes / gwdomains
  sub domain wild card filtering tool
  ☆41Updated 4 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆103Updated 4 years ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆90Updated this week
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆70Updated 4 years ago
• Rhynorater / reports
  ☆59Updated 7 months ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆88Updated 5 years ago
• JR0ch17 / rdse
  Extracts subdomains from a specified domain using https://recon.dev.
  ☆16Updated 4 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆83Updated 4 years ago
• cqsd / daily-commonspeak2
  commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …
  ☆40Updated 3 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆101Updated 4 months ago
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆79Updated 3 years ago
• ameenmaali / endpointdiff
  Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.
  ☆41Updated 5 years ago
• gwen001 / myrecon.py
  My recon script
  ☆51Updated 5 years ago
• Damian89 / simple-oob-scanner
  Simple tool to test for SSRF/OOB HTTP Read within the Path of a request
  ☆30Updated 5 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆70Updated 3 years ago
• cujanovic / Virtual-host-wordlist
  Virtual host wordlist
  ☆51Updated 4 years ago