Alternatives and similar repositories for PayloadsAll

Users that are interested in PayloadsAll are comparing it to the libraries listed below

• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆55Updated 5 years ago
• pikpikcu / nuubi
  Nuubi Tools (Information-ghatering|Scanner|Recon.)
  ☆87Updated 5 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• z3dc0ps / 0x0p1n3r
  0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover
  ☆57Updated 4 years ago
• LyleMi / Saker
  Flexible Penetrate Testing Auxiliary Suite
  ☆72Updated 2 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆155Updated 5 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• ethicalhackingplayground / gocrawler
  ☆33Updated 3 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆83Updated 3 years ago
• yasserjanah / CVE-2020-5902
  exploit code for F5-Big-IP (CVE-2020-5902)
  ☆43Updated 2 years ago
• cspshivam / easyrecon
  Tool to automate recon
  ☆43Updated 3 years ago
• tkmru / lazyCSRF
  A more useful CSRF PoC generator on Burp Suite
  ☆86Updated 3 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆70Updated 5 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆46Updated 2 years ago
• profmoriarity / rexsser
  This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
  ☆75Updated 4 years ago
• ethicalhackingplayground / wordlistgen
  Generates target specific word lists for Fuzzing with fuff
  ☆111Updated 5 years ago
• ReddyyZ / urlbrute
  Directory/Subdomain scanner developed in GoLang.
  ☆49Updated 4 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆63Updated 3 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆65Updated 4 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆91Updated 6 years ago
• RedSection / pFuzz
  pFuzz helps us to bypass web application firewall by using different methods at the same time.
  ☆161Updated 4 years ago
• masahiro331 / CVE-2020-9484
  ☆126Updated 3 years ago
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆108Updated 6 years ago
• arbazkiraak / web-cache-deception-checker
  Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages
  ☆44Updated 3 years ago
• Ibonok / CVE-2020-4463
  IBM Maximo Asset Management is vulnerable to Information Disclosure via XXE Vulnerability (CVE-2020-4463)
  ☆53Updated 2 years ago
• duckstroms / xss-reflector
  XSS reflector vulnerabilities exploitation extended.
  ☆27Updated 4 years ago
• KathanP19 / portscan.sh
  All in one port scanning script.
  ☆68Updated 5 years ago
• Xyntax / waf-bypass
  ☆60Updated 6 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆110Updated 3 years ago
• medbsq / ncl
  nuclei framework scripts
  ☆34Updated 3 years ago