Alternatives and similar repositories for fuzzing

Users that are interested in fuzzing are comparing it to the libraries listed below

• nico989 / B1pass3r
  Python tool to test known techniques to bypass 403 and 401 HTTP responses.
  ☆36Updated 2 years ago
• c0dejump / CredzCheckr
  Testing default web credentials
  ☆34Updated 2 years ago
• tamimhasan404 / Open-Source-Nuclei-Templates-Downloader
  Script that download 37+ open source nuclei templates
  ☆45Updated 3 years ago
• ethicalhackingplayground / aem-eye
  A very simple AEM detector written in rust.🦀
  ☆20Updated 2 years ago
• SeifElsallamy / XSSFire
  A standalone Blind XSS Script.
  ☆48Updated 5 months ago
• s4hm4d / shodanidb
  Fetch data (open ports, CVEs, CPEs, ...) from shodan internetDB API
  ☆92Updated 3 years ago
• gwen001 / gitlab-subdomains
  Find subdomains on GitLab.
  ☆104Updated last year
• Lu3ky13 / lu3ky13-SCANNER
  tools to find xss in a website
  ☆61Updated 3 years ago
• DevanshRaghav75 / AutomationGuide
  Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi
  ☆44Updated 4 years ago
• ethicalhackingplayground / hrekt
  A really fast http prober.
  ☆41Updated 2 years ago
• hemantsolo / Host-Header-Injection-Vulnerability-Scanner
  Host Header Vulnerability Scanner Automated Tool
  ☆28Updated 9 months ago
• whalebone7 / FfufMaster
  Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.
  ☆25Updated 2 years ago
• xhzeem / paramix
  Paramix is a command-line tool for modifying the parameters of a list of URLs from stdin and returns them in stdout.
  ☆17Updated last year
• hakluke / dnstrace
  DNS resolution tracing tool
  ☆36Updated 4 years ago
• gwen001 / favicon-hashtrick
  Python script implementing the favicon hash trick to find subdomains.
  ☆38Updated 2 years ago
• byt3hx / 403-bypass
  403-bypass tool to bypass 403 responses.
  ☆124Updated 3 years ago
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆56Updated 2 years ago
• mathis2001 / ParamFirstCheck
  ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …
  ☆35Updated 2 years ago
• h0tak88r / Wordlists
  A Collection of Wordlists for Penetration Testing
  ☆32Updated last month
• adamjsturge / easy-xsshunter-express
  The fastest way to setup XSSHunter. It has options for the official and Discord/Slack Forks
  ☆45Updated last year
• Mostafa-Elguerdawi / Automation_Bug_Hunting
  ☆66Updated 3 years ago
• e1abrador / Burp-Encode-IP
  Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.
  ☆46Updated last year
• 0xPugal / bounty.sh
  simple bash script to earn bounties
  ☆36Updated last year
• anmolksachan / JIRAya
  JIRA"YA is a vulnerability analyzer for JIRA instances. It runs active scans to identify vulnerabilities by interacting with the host and…
  ☆41Updated last year
• h0tak88r / subfalcon
  subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains or a single doma…
  ☆54Updated last year
• Th0h0 / autopoisoner
  Web cache poisoning vulnerability scanner.
  ☆72Updated 3 years ago
• d3mondev / crossjoin
  Generate a cross join, also known as a Cartesian product, from the lines of the specified files. This process is useful for creating fuzz…
  ☆21Updated 2 years ago
• blackhatethicalhacking / ScopeHunter
  ScopeHunter is a command-line tool for finding in scope targets for bug bounty programs.
  ☆73Updated last year
• SirBugs / JsValidator
  JsValidator is a tool created for validating the JS files after crawlling it from waybackurls
  ☆18Updated 2 years ago
• TaurusOmar / reconbulk
  Automated Subdomain Enumeration and Scanning Tool
  ☆116Updated 2 years ago