Alternatives and similar repositories for xss-validator

Users that are interested in xss-validator are comparing it to the libraries listed below

• kapytein / jsonp
  jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
  ☆154Updated 4 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆223Updated 11 months ago
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆292Updated 6 years ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆277Updated 4 years ago
• laconicwolf / burp-extensions
  A collection of scripts to extend Burp Suite
  ☆142Updated 6 years ago
• wish-i-was / femida
  Automated blind-xss search for Burp Suite
  ☆285Updated 5 years ago
• In3tinct / See-SURF
  Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.
  ☆333Updated 2 months ago
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆111Updated 4 years ago
• PortSwigger / scan-check-builder
  Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.
  ☆71Updated 3 years ago
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆229Updated 8 months ago
• Shashank-In / TravisLeaks
  A tool to find sensitive keys and passwords in Travis logs
  ☆144Updated 4 years ago
• dark-warlord14 / JSScanner
  You can read the writeup on this script here
  ☆275Updated 5 years ago
• SilverPoision / a-full-list-of-wordlists
  this contain the burp pack
  ☆206Updated 8 years ago
• 0xbharath / domains-from-csp
  A script to extract domain names from Content Security Policy(CSP) headers
  ☆112Updated 6 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆87Updated 9 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆246Updated 2 years ago
• MichaelStott / CRLF-Injection-Scanner
  Command line tool for testing CRLF injection on a list of domains.
  ☆164Updated last year
• jakejarvis / subtake
  Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
  ☆149Updated 5 years ago
• ethicalhackingplayground / ssrf-tool
  ☆145Updated 3 years ago
• MilindPurswani / Syborg
  Recursive DNS Subdomain Enumerator with dead-end avoidance system (BETA)
  ☆146Updated 4 years ago
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆111Updated 6 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆199Updated 4 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆110Updated 3 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆262Updated 2 years ago
• tijme / angularjs-csti-scanner
  Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
  ☆325Updated 3 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆155Updated 5 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆63Updated 3 years ago
• opnsec / postMessage-logger
  Simple "postMessage logger" Chrome extension
  ☆98Updated 5 years ago
• Sjord / jwtdemo
  Practice hacking JWT tokens
  ☆116Updated 3 years ago
• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆104Updated 4 years ago