Alternatives and similar repositories for scalpel

Users that are interested in scalpel are comparing it to the libraries listed below

• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆100Updated 2 weeks ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆73Updated 2 years ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆95Updated last year
• codewhitesec / HttpRemotingObjRefLeak
  Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
  ☆89Updated last year
• bytehope / wwe
  ☆19Updated 4 months ago
• hackvertor / shadow-repeater
  ☆37Updated 3 weeks ago
• PortSwigger / server-side-prototype-pollution
  ☆37Updated 2 years ago
• PortSwigger / splitting-the-email-atom
  ☆81Updated 2 weeks ago
• c53elyas / CVE-2023-33733
  CVE-2023-33733 reportlab RCE
  ☆119Updated last year
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆50Updated last year
• doyensec / Prototype-Pollution-Gadgets-Finder
  ☆88Updated last year
• neex / ghostinthepdf
  ☆166Updated 3 years ago
• BishopFox / ysoserial-bf
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆27Updated last year
• cfreal / ten
  A (small) web exploit framework
  ☆92Updated last week
• assetnote / exploits
  Repository to store exploits created by Assetnotes Security Research team
  ☆179Updated last year
• cyllective / oauth-labs
  oauth-labs: an intentionally vulnerable set of OAuth 2.0 labs for security training and learning
  ☆68Updated 7 months ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆43Updated last year
• synacktiv / laravel_cookie_killer
  ☆27Updated 2 years ago
• federicodotta / Burp-Suite-Extender-Montoya-Course
  This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …
  ☆44Updated 7 months ago
• nccgroup / jwt-reauth
  ☆105Updated 2 years ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆111Updated last year
• Moopinger / CLZero
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆87Updated last year
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆302Updated last year
• cyberaz0r / Burp-IISTildeEnumerationScanner
  Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability
  ☆59Updated 2 years ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆61Updated last month
• sinsinology / CVE-2024-4358
  Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)
  ☆77Updated last year
• xscorp / jsmug
  A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON
  ☆113Updated last year
• c3l3si4n / quickcert
  A better way of querying certificate transparency logs
  ☆87Updated 3 months ago
• m4ll0k / autobreakpointer
  Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code
  ☆90Updated 6 months ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆77Updated last year