Alternatives and similar repositories for Hackerone

Users that are interested in Hackerone are comparing it to the libraries listed below

• silentsignal / burp-image-size
  Image size issues plugin for Burp Suite
  ☆95Updated 7 years ago
• incredibleindishell / Local-file-disclosure-SQL-Injection-Lab
  This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …
  ☆44Updated 8 years ago
• gursev / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆43Updated 11 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 12 years ago
• Gifts / XXE-OOB-Exploitation-Toolset-for-Automation
  XXE OOB Exploitation Toolset for Automation
  ☆63Updated 11 years ago
• nccgroup / dotnetpaddingoracle
  Python Implementation of a .NET Padding Oracle Assessment Tool
  ☆30Updated 9 years ago
• Meatballs1 / burp-extensions
  Burp Suite Extensions
  ☆128Updated 12 years ago
• falcon-lnhg / mwebfp
  LNHG - Mass Web Fingerprinter
  ☆61Updated 9 years ago
• gabemarshall / casperXSS
  Reflective/DOM XSS scanner built on casperJS
  ☆81Updated 10 years ago
• PaulSec / CSRFT
  A lightweight CSRF Toolkit for easy Proof of concept
  ☆174Updated 11 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 6 years ago
• penafieljlm / burp-tracer
  Allows you to trace where inputs are reflected back to the user.
  ☆37Updated 7 years ago
• portcullislabs / xssshell-xsstunnel
  XSS Tunnel is a standard HTTP proxy which sits on an attacker’s system. XSS Shell is a powerful XSS backdoor, in XSS Shell one can inter…
  ☆88Updated 10 years ago
• viperbluff / PortWitness
  Tool for checking Whether a domain or its multiple sub-domains are up and running.
  ☆72Updated 6 years ago
• securelayer7 / csv-injection-vulnerable-php-script-
  CSV injection Vulnerable Script.
  ☆29Updated 8 years ago
• rgerganov / xxe-example
  XXE vulnerability demo
  ☆22Updated 11 years ago
• GrrrDog / ACEDcup
  Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)
  ☆38Updated 9 years ago
• 1N3 / HTTPoxyScan
  HTTPoxy Exploit Scanner by 1N3 @CrowdShield
  ☆103Updated 7 years ago
• silentsignal / duncan
  Duncan - Blind SQL injector skeleton
  ☆56Updated 3 years ago
• dionach / HeadersAnalyzer
  Burp extension that checks for interesting and security headers
  ☆44Updated 4 years ago
• zynga / hiccup
  [DEPRECATED] Hiccup is a framework that allows the Burp Suite (a web application security testing tool, http://portswigger.net/burp/) to …
  ☆42Updated 6 years ago
• EnableSecurity / Webapp-Exploit-Payloads
  a collection of payloads for common webapps
  ☆73Updated 12 years ago
• hdm / 2017-BSidesLV-Modern-Recon
  Materials related to the 2017 BSides Las Vegas presentation
  ☆52Updated 4 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆89Updated 7 years ago
• yehia-mamdouh / XSSYA-V-2.0
  ☆84Updated 8 years ago
• stamparm / DSFS
  Damn Small FI Scanner
  ☆60Updated 5 years ago
• TheRook / CSRF-Request-Builder
  ☆79Updated 9 years ago
• yehia-mamdouh / XSSYA
  XSSYA (Cross Site Scripting Scanner & Vulnerability Confirmation)
  ☆96Updated 2 years ago
• PortSwigger / replicator
  Burp extension to help developers replicate findings from pen tests
  ☆70Updated last year
• 1N3 / XSSTracer
  A small python script to check for Cross-Site Tracing (XST)
  ☆135Updated 9 years ago