Alternatives and similar repositories for XSS-PoCs

Users that are interested in XSS-PoCs are comparing it to the libraries listed below

• h0tak88r / AutoSubRecon
  bash script for automating subdomain enumeration process either passive or active
  ☆29Updated last year
• h0tak88r / Wordlists
  A Collection of Wordlists for Penetration Testing
  ☆32Updated last month
• Ravaan21 / Chandrahasa
  A solid recon tool I use personally.
  ☆30Updated 2 years ago
• projectmonke / typewriter
  ☆13Updated 2 years ago
• 0xPugal / bugbounty_profile
  Automate bug bounty recon using bash alias
  ☆15Updated last year
• Th0h0 / autoredirect
  Smart and efficient tool to automate open redirect detection at scale.
  ☆10Updated 3 years ago
• R0X4R / Parshu
  Filter URLs to save your time.
  ☆60Updated 3 years ago
• 0xPugal / monitor.sh
  Continuous Reconnaissance and Vulnerability Scanning for Bug Bounties
  ☆18Updated last year
• HernanRodriguez1 / ScanMySQLiErrorBased-Nuclei
  ☆21Updated 3 years ago
• Cappricio-Securities / ghostrecon
  gh0str3con is a All in one cloud based web Recon tool.
  ☆23Updated last year
• RikunjSindhwad / Task-Ninja-Workflows
  This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja
  ☆24Updated 5 months ago
• bsysop / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆17Updated 5 years ago
• gwen001 / bxss
  Alternative to XSS Hunter for blind XSS.
  ☆51Updated 3 years ago
• six2dez / resolvers_reconftw
  Resolvers updated daily for reconftw
  ☆47Updated 2 years ago
• Virdoexhunter / Subenum_deep_subdomain_enumeration
  In this repo, I have created a subdomain enumeration function that grab subdomains in deep.
  ☆23Updated 2 years ago
• KathanP19 / waybackfetch
  Tool for fetching all the available waybackmachine snapshot urls
  ☆24Updated last year
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆56Updated 3 years ago
• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 3 years ago
• gwen001 / favicon-hashtrick
  Python script implementing the favicon hash trick to find subdomains.
  ☆38Updated 2 years ago
• sl4x0 / subfree
  Your subdomains are free for the taking - no API key, no mistaking! 🕺
  ☆36Updated 2 years ago
• aliyugombe / reflector
  ☆15Updated 2 years ago
• 0xElkot / wp-json-extractor
  ☆19Updated 2 years ago
• SirBugs / JsValidator
  JsValidator is a tool created for validating the JS files after crawlling it from waybackurls
  ☆18Updated 2 years ago
• gwen001 / detectify-cves
  Find CVEs that don't have a Detectify modules.
  ☆22Updated 2 years ago
• gwen001 / gitpillage
  Extract data from a .git directory.
  ☆15Updated 2 years ago
• PatrikFehrenbach / practical-bug-bounty-content
  ☆15Updated 2 years ago
• Ibrahim-sec / JSNotify
  JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…
  ☆18Updated 2 years ago
• hakluke / dnstrace
  DNS resolution tracing tool
  ☆36Updated 4 years ago
• Az0x7 / payloadforall
  ☆27Updated 2 years ago
• mathis2001 / ParamFirstCheck
  ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …
  ☆34Updated 2 years ago