Alternatives and similar repositories for vaf

Users that are interested in vaf are comparing it to the libraries listed below

• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆297Updated last year
• M4DM0e / DirDar
  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
  ☆453Updated 2 years ago
• ffuf / pencode
  Complex payload encoder
  ☆238Updated 2 years ago
• kleiton0x00 / XSScope
  XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.
  ☆315Updated 3 years ago
• Sh1Yo / request_smuggler
  Http request smuggling vulnerability scanner
  ☆229Updated 3 years ago
• emadshanab / Nmap-NSE-scripts-collection
  ☆175Updated 3 months ago
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆203Updated 2 weeks ago
• kleiton0x00 / ppmap
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆519Updated 3 years ago
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆271Updated last year
• daxAKAhackerman / XSS-Catcher
  A blind XSS detection and XSS data capture framework
  ☆175Updated 2 months ago
• storenth / lazyrecon
  Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.
  ☆150Updated 2 years ago
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆225Updated 3 years ago
• EasyRecon / Hunt3r
  Made your bugbounty subdomains reconnaissance easier with Hunt3r the web application reconnaissance framework
  ☆169Updated 3 years ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆219Updated 3 years ago
• VainlyStrain / Vailyn
  A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
  ☆200Updated 4 years ago
• carlospolop / fuzzhttpbypass
  This tool use fuuzzing to try to bypass unknown authentication methods, who knows...
  ☆257Updated last year
• takito1812 / log4j-detect
  Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URLs with multithreading
  ☆195Updated 4 years ago
• Karmaz95 / crimson
  Web Application Security Testing Tools
  ☆250Updated last year
• 0xtz / Enum_For_All
  ☆166Updated 5 years ago
• moeinfatehi / Admin-Panel_Finder
  A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)
  ☆122Updated 3 years ago
• ivan-sincek / forbidden
  Bypass 4xx HTTP response status codes and more. The tool is based on Python Requests, PycURL, and HTTP Client.
  ☆254Updated 4 months ago
• mdsecresearch / BurpSuiteSharpener
  ☆523Updated 2 years ago
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆148Updated 5 years ago
• JoyGhoshs / 0install
  A bash script that will automatically install Bug Hunting tools used for recon
  ☆178Updated 2 years ago
• ihebski / XSS-Payloads
  Collection of XSS Payloads for fun and profit
  ☆204Updated 5 years ago
• iamthefrogy / nerdbug
  Full Nuclei automation script with logic explanation.
  ☆246Updated 3 years ago
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆86Updated 5 years ago
• six2dez / burp-bounty-profiles
  Burp Bounty profiles compilation, feel free to contribute!
  ☆148Updated 4 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆82Updated 3 years ago
• Bandit-HaxUnit / haxunit
  ☆329Updated 6 months ago