Alternatives and similar repositories for request_smuggler

Users that are interested in request_smuggler are comparing it to the libraries listed below

• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆296Updated 9 months ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆219Updated 2 years ago
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆182Updated 2 years ago
• hakluke / haklistgen
  Turns any junk text into a usable wordlist for brute-forcing.
  ☆222Updated last year
• FleexSecurity / fleex
  Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.
  ☆263Updated 10 months ago
• hakluke / hakscale
  Distribute ordinary bash commands over many systems
  ☆168Updated 2 years ago
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆371Updated 2 years ago
• iustin24 / chameleon
  ☆380Updated 2 years ago
• resyncgg / ripgen
  Rust-based high performance domain permutation generator.
  ☆289Updated last year
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆223Updated 2 years ago
• trickest / mksub
  Generate tens of thousands of subdomain combinations in a matter of seconds
  ☆271Updated last year
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆196Updated 2 weeks ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 3 years ago
• trickest / mkpath
  Make URL path combinations using a wordlist
  ☆173Updated last year
• geeknik / the-nuclei-templates
  Nuclei templates written by us.
  ☆272Updated 3 years ago
• ffuf / pencode
  Complex payload encoder
  ☆228Updated last year
• daxAKAhackerman / XSS-Catcher
  A blind XSS detection and XSS data capture framework
  ☆171Updated last week
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆166Updated last year
• trickest / dsieve
  Filter and enrich a list of subdomains by level
  ☆207Updated last year
• 0xTeles / jsleak
  a Go code to detect leaks in JS files via regex patterns
  ☆144Updated 3 years ago
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆253Updated last year
• kleiton0x00 / ppmap
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆512Updated 3 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆223Updated last year
• Josue87 / AnalyticsRelationships
  Get related domains / subdomains by looking at Google Analytics IDs
  ☆246Updated 3 years ago
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆158Updated last year
• j3ssie / sdlookup
  IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io
  ☆130Updated 3 years ago
• BonJarber / fresh-resolvers
  List of fresh DNS resolvers updated daily
  ☆108Updated 2 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆114Updated 2 years ago
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆314Updated last week