Alternatives and similar repositories for co2

Users that are interested in co2 are comparing it to the libraries listed below

• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆44Updated 2 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• ZephrFish / BurpFeed
  Hacked together script for feeding urls into Burp's Sitemap
  ☆93Updated 2 months ago
• chopicalqui / TurboDataMiner
  The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of informatio…
  ☆60Updated 3 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆49Updated 3 years ago
• roottusk / xforwardy
  Host Header Injection Scanner
  ☆50Updated 5 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆62Updated 2 years ago
• hahwul / hbxss
  Security test tool for Blind XSS
  ☆26Updated 5 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆156Updated 5 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆69Updated 5 years ago
• topavankumarj / CORS-Exploit-Script
  ☆42Updated 2 years ago
• PortSwigger / additional-cors-checks
  ☆11Updated 3 years ago
• KingOfBugbounty / SecretFinder
  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
  ☆35Updated 5 years ago
• cujanovic / Virtual-host-wordlist
  Virtual host wordlist
  ☆51Updated 5 years ago
• B3nac / bXSSRequest
  Literally spray blind xss payloads everywhere.
  ☆26Updated 3 years ago
• cybercdh / h2i
  Converts a hostname (or URI) to IP address using your local resolver
  ☆26Updated last year
• codewatchorg / Burp-IndicatorsOfVulnerability
  Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack
  ☆41Updated 3 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆56Updated 5 years ago
• z3dc0ps / 0x0p1n3r
  0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover
  ☆57Updated 5 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆59Updated 4 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆40Updated 5 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆70Updated 5 years ago
• cspshivam / easyrecon
  Tool to automate recon
  ☆42Updated 4 years ago
• hahwul / action-dalfox
  XSS scanning with Dalfox on Github-action
  ☆26Updated 2 years ago
• Dheerajmadhukar / subzzZ
  SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.
  ☆38Updated 4 years ago
• 0xsapra / fuzzparam
  ☆59Updated 4 years ago
• Josue87 / roboxtractor
  Extract endpoints marked as disallow in robots files to generate wordlists.
  ☆58Updated 3 years ago
• caffeinedoom / Subvenkon
  Subvenkon is a subdomain enumerator from Venkon
  ☆23Updated 5 years ago
• stevemcilwain / secrets
  Offsec Pentest and Bug Bounty Notes
  ☆25Updated 5 years ago