Alternatives and similar repositories for writeups:

Users that are interested in writeups are comparing it to the libraries listed below

• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated last month
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆47Updated 6 months ago
• doyensec / CVE-2022-39299_PoC_Generator
  A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…
  ☆19Updated 2 years ago
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆50Updated 9 months ago
• jzheaux / spel-injection
  An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition
  ☆27Updated 6 years ago
• raesene / k8s_ssrf_portscanner
  ☆31Updated 2 years ago
• hackvertor / shadow-repeater
  ☆28Updated this week
• hakivvi / ermir
  an Evil Java RMI Registry.
  ☆49Updated 2 years ago
• PortSwigger / piper
  Piper Burp Suite Extender plugin
  ☆14Updated this week
• Devang-Solanki / recon.cloud
  recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…
  ☆24Updated 2 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆47Updated 2 years ago
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆31Updated 3 years ago
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 2 years ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆43Updated last year
• FuzzySecurity / afl-frida-build
  Ansible build for Afl++ Frida-Mode
  ☆23Updated 10 months ago
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆28Updated 3 years ago
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆56Updated last year
• denniskniep / interactsh_deploy
  Interactsh deployment to AWS EC2 Instance with Terraform
  ☆12Updated 3 years ago
• mr-pmillz / gofireprox
  FireProx written in Go
  ☆19Updated 11 months ago
• absholi7ly / Bypass-authentication-GitHub-Enterprise-Server
  The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES …
  ☆50Updated 10 months ago
• wrvenkat / burp-multistep-csrf-poc
  Burp extension to generate multi-step CSRF POC.
  ☆29Updated 5 years ago
• WhiteOakSecurity / GoAWSConsoleSpray
  Tool to spray AWS Console IAM Logins
  ☆29Updated 2 years ago
• harisec / orange-confusion-attacks
  Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
  ☆20Updated 7 months ago
• joohoi / ffuf-workshop
  ☆11Updated 2 years ago
• dsecuredcom / yataf
  yataf extracts secrets and paths from files or urls - its best used against javascript files
  ☆52Updated 6 months ago
• w1th4d / JarPlant
  Java archive implant toolkit.
  ☆60Updated this week
• p3rr0x / Blog
  ☆23Updated 2 months ago
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 3 years ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆22Updated last month
• scipag / websocket_fuzzer
  Simple WebSocket fuzzer
  ☆32Updated last year