Alternatives and similar repositories for scalpel

Users that are interested in scalpel are comparing it to the libraries listed below

• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆73Updated 2 years ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆90Updated 7 months ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆95Updated last year
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆61Updated 2 weeks ago
• codewhitesec / HttpRemotingObjRefLeak
  Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
  ☆89Updated last year
• hackvertor / shadow-repeater
  ☆36Updated 2 months ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆43Updated last year
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆50Updated last year
• bytehope / wwe
  ☆19Updated 3 months ago
• Rhynorater / rebindMultiA
  ☆63Updated 2 years ago
• nullenc0de / Cognitohunter
  A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…
  ☆20Updated 5 months ago
• PortSwigger / server-side-prototype-pollution
  ☆37Updated 2 years ago
• synacktiv / laravel_cookie_killer
  ☆27Updated 2 years ago
• cyllective / oauth-labs
  oauth-labs: an intentionally vulnerable set of OAuth 2.0 labs for security training and learning
  ☆68Updated 6 months ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆77Updated last year
• doyensec / Prototype-Pollution-Gadgets-Finder
  ☆88Updated last year
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆67Updated 2 years ago
• neex / ghostinthepdf
  ☆166Updated 3 years ago
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆32Updated 3 months ago
• Moopinger / CLZero
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆87Updated last year
• wfinn / redirex
  tool that generates bypasses for open redirects
  ☆52Updated 3 years ago
• defparam / haptyc
  ☆94Updated 3 years ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆62Updated 3 years ago
• JoshuaMart / ScopesExtractor
  A tool for monitoring bug bounty programs across multiple platforms to track scope changes.
  ☆25Updated last month
• PortSwigger / splitting-the-email-atom
  ☆81Updated 8 months ago
• fcavallarin / burp-dom-scanner
  Burp Suite's extension to scan and crawl Single Page Applications
  ☆105Updated 2 years ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆111Updated last year
• c3l3si4n / quickcert
  A better way of querying certificate transparency logs
  ☆86Updated 2 months ago
• jzheaux / spel-injection
  An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition
  ☆28Updated 7 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆71Updated 3 years ago