Alternatives and similar repositories for co2:

Users that are interested in co2 are comparing it to the libraries listed below

• PortSwigger / additional-cors-checks
  ☆9Updated 2 years ago
• cujanovic / Virtual-host-wordlist
  Virtual host wordlist
  ☆51Updated 4 years ago
• osamahamad / CVE-2020-9484-Mass-Scan
  CVE-2020-9484 Mass Scanner, Scan a list of urls for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE
  ☆32Updated 4 years ago
• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆38Updated last year
• hahwul / hbxss
  Security test tool for Blind XSS
  ☆26Updated 4 years ago
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆44Updated 2 years ago
• PortSwigger / site-map-extractor
  ☆10Updated 3 years ago
• Josue87 / roboxtractor
  Extract endpoints marked as disallow in robots files to generate wordlists.
  ☆56Updated 2 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• PortSwigger / add-custom-header
  A Burp Suite extension to add a custom header (e.g. JWT)
  ☆19Updated 4 years ago
• ameenmaali / endpointdiff
  Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.
  ☆41Updated 5 years ago
• cybercdh / dirlstr
  Finds Directory Listings or open S3 buckets from a list of URLs
  ☆52Updated 3 years ago
• ankitk323 / ImgRce
  Image Tragick Exploit Tool Using Burp Collaborator
  ☆35Updated 8 months ago
• PortSwigger / ator
  ☆29Updated 9 months ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆56Updated 5 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆54Updated 4 years ago
• PortSwigger / additional-scanner-checks
  Collection of scanner checks missing in Burp
  ☆30Updated 4 years ago
• humblelad / Needle
  Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip
  ☆21Updated 4 years ago
• roottusk / xforwardy
  Host Header Injection Scanner
  ☆44Updated 4 years ago
• codewatchorg / Burp-IndicatorsOfVulnerability
  Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack
  ☆41Updated 2 years ago
• dwisiswant0 / look4jar
  Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?
  ☆45Updated 2 years ago
• chopicalqui / TurboDataMiner
  The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of informatio…
  ☆55Updated 2 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆70Updated 4 years ago
• PortSwigger / openapi-parser
  Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approve…
  ☆42Updated last year
• payloadartist / recon
  NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.
  ☆78Updated 2 years ago
• hahwul / gitls
  🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline
  ☆59Updated 2 months ago
• ztgrace / mole
  Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.
  ☆57Updated 4 years ago
• RihaMaheshwari / XXE-Injection-Payloads
  XXE Injection Payloads
  ☆28Updated 5 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆62Updated 3 years ago