Alternatives and similar repositories for Hackerone

Users that are interested in Hackerone are comparing it to the libraries listed below

• silentsignal / burp-image-size
  Image size issues plugin for Burp Suite
  ☆95Updated 7 years ago
• Gifts / XXE-OOB-Exploitation-Toolset-for-Automation
  XXE OOB Exploitation Toolset for Automation
  ☆63Updated 12 years ago
• 1N3 / HTTPoxyScan
  HTTPoxy Exploit Scanner by 1N3 @CrowdShield
  ☆104Updated 8 years ago
• hdm / 2017-BSidesLV-Modern-Recon
  Materials related to the 2017 BSides Las Vegas presentation
  ☆52Updated 5 years ago
• gursev / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆43Updated 12 years ago
• penafieljlm / burp-tracer
  Allows you to trace where inputs are reflected back to the user.
  ☆37Updated 8 years ago
• PaulSec / CSRFT
  A lightweight CSRF Toolkit for easy Proof of concept
  ☆172Updated 11 years ago
• silentsignal / duncan
  Duncan - Blind SQL injector skeleton
  ☆60Updated 4 years ago
• a7vinx / swarm
  A modular distributed penetration testing tool.
  ☆41Updated 9 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆42Updated 8 years ago
• stamparm / DSFS
  Damn Small FI Scanner
  ☆62Updated 6 years ago
• GrrrDog / ACEDcup
  Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)
  ☆38Updated 9 years ago
• portcullislabs / xssshell-xsstunnel
  XSS Tunnel is a standard HTTP proxy which sits on an attacker’s system. XSS Shell is a powerful XSS backdoor, in XSS Shell one can inter…
  ☆88Updated 11 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 13 years ago
• SpiderLabs / burplay
  Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…
  ☆83Updated 8 years ago
• nccgroup / dotnetpaddingoracle
  Python Implementation of a .NET Padding Oracle Assessment Tool
  ☆31Updated 10 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆89Updated 8 years ago
• gabemarshall / casperXSS
  Reflective/DOM XSS scanner built on casperJS
  ☆81Updated 11 years ago
• falcon-lnhg / mwebfp
  LNHG - Mass Web Fingerprinter
  ☆63Updated 9 years ago
• dionach / HeadersAnalyzer
  Burp extension that checks for interesting and security headers
  ☆44Updated 5 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 9 years ago
• viperbluff / PortWitness
  Tool for checking Whether a domain or its multiple sub-domains are up and running.
  ☆71Updated 7 years ago
• yehia-mamdouh / XSSYA
  XSSYA (Cross Site Scripting Scanner & Vulnerability Confirmation)
  ☆97Updated 3 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 7 years ago
• Meatballs1 / burp-extensions
  Burp Suite Extensions
  ☆129Updated 12 years ago
• vulnex / Tintorera
  Source Code Intelligence
  ☆30Updated 8 years ago
• ajinabraham / Static-DOM-XSS-Scanner
  Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …
  ☆119Updated 10 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆86Updated 11 years ago
• rgerganov / xxe-example
  XXE vulnerability demo
  ☆22Updated 11 years ago
• 1N3 / XSSTracer
  A small python script to check for Cross-Site Tracing (XST)
  ☆132Updated 10 years ago