Alternatives and similar repositories for lab

Users that are interested in lab are comparing it to the libraries listed below

• beishanxueyuan / Chrome_Extension

  View on GitHub
  chrome插件
  ☆13Mar 19, 2025Updated 10 months ago
• kamanreda / LazyQS

  View on GitHub
  简单的sql和xss探测burp插件
  ☆18Jun 25, 2022Updated 3 years ago
• beishanxueyuan / BChecks

  View on GitHub
  burp suite插件
  ☆13Jul 9, 2023Updated 2 years ago
• ScorpionsMAX / CVE-2021-43798-Grafana-POC

  View on GitHub
  CVE-2021-43798 Grafana 任意文件读取漏洞 POC+参数
  ☆14Dec 17, 2021Updated 4 years ago
• CocoHall / xiaSql

  View on GitHub
  xiaSql的python魔改版
  ☆15Oct 31, 2024Updated last year
• XinCaoZ / RouteVulScanPlus

  View on GitHub
  基于RouteVulScan插件的小更新，添加了路由过滤功能和修复一些小bug
  ☆14Sep 9, 2024Updated last year
• Cmisl / WebSocketGodZilla

  View on GitHub
  实现了WebSocket通信的哥斯拉webshell管理器
  ☆19Jul 8, 2025Updated 7 months ago
• GarlicFuzzer / PeachFuzzer_Pits

  View on GitHub
  ☆20Aug 6, 2023Updated 2 years ago
• Xuno1 / QiTian

  View on GitHub
  魔改了一版中文版的SQLMAP，参数功能一模一样
  ☆18Sep 19, 2023Updated 2 years ago
• pmiaowu / BurpReflectiveXssMiao

  View on GitHub
  一款基于burp的反射xss检测插件
  ☆154Dec 1, 2021Updated 4 years ago
• BBD-YZZ / hvv2023check

  View on GitHub
  2023hvv期间部分爆出漏洞的辅助扫描工具
  ☆20Apr 24, 2025Updated 9 months ago
• hack007x / MoonVeil

  View on GitHub
  集成多种攻防技术与检测手段，帮助安全测试人员高效执行信息收集、漏洞挖掘、利用验证， 提升渗透测试的自动化与体系化水平，为安全团队快速发现潜在风险与攻击面提供有力支持。
  ☆29Oct 7, 2025Updated 4 months ago
• Ernket / xia_sql_modify

  View on GitHub
  瞎注修改版，新增了参数黑名单、返回包列排序、数据包内容自动匹配替换的功能
  ☆24Mar 19, 2025Updated 10 months ago
• h00klod0er / xia_Yue_pro

  View on GitHub
  xia_Yue 插件修改版，瞎越修改版，修复中文重放乱码，添加请求行越权测试，一键导出越权url，允许重复url测试等功能
  ☆65Jan 5, 2026Updated last month
• B0T1eR / ysoSimple

  View on GitHub
  ysoSimple：简易的Java漏洞利用工具，集成Java反序列化，Hessian反序列化，XStream反序列化，SnakeYaml反序列化，Shiro550，JSF反序列化，SSTI模板注入，JdbcAttackPayload，JNDIAttack，字节码生成。
  ☆105Jan 20, 2026Updated 3 weeks ago
• RCEraser / cve

  View on GitHub
  ☆23Oct 16, 2023Updated 2 years ago
• Symph0nia / ExpFuzzWordlist

  View on GitHub
  ExpFuzz字典
  ☆21May 27, 2024Updated last year
• mrknow001 / BurpAppletPentester

  View on GitHub
  SessionKey解密插件
  ☆318May 8, 2023Updated 2 years ago
• Lotus6 / AutoRepeater

  View on GitHub
  Burp插件，自动化挖掘SSRF，Redirect，Sqli漏洞，自定义匹配参数
  ☆447Sep 10, 2023Updated 2 years ago
• adeljck / MS17-010

  View on GitHub
  MS17-010 Exploits With Original NSA Tool(only for windows)
  ☆30Jul 30, 2024Updated last year
• TFour123 / screen_get

  View on GitHub
  批量获取攻防资产访问截图
  ☆33Apr 17, 2025Updated 9 months ago
• Hypdncy / BurpUnExInfo

  View on GitHub
  一种收集敏感信息的Burp插件
  ☆31Sep 2, 2022Updated 3 years ago
• smxiazi / xia_sql

  View on GitHub
  xia SQL (瞎注) burp 插件 ，在每个参数后面填加一个单引号，两个单引号，一个简单的判断注入小插件。
  ☆1,226May 18, 2023Updated 2 years ago
• xz-zone / Webpack_extract

  View on GitHub
  Hengge team develops JavaScript specifically for loading Webpack for batch reading
  ☆51Dec 25, 2025Updated last month
• zelat / BurpCopilot

  View on GitHub
  基于AI的BurpSuite漏洞分析插件
  ☆11Sep 21, 2023Updated 2 years ago
• PandaWood / CAB-DevExpress-Extension-Kit

  View on GitHub
  CAB DevExpress Extension Kit is a library that allows the use of DevExpress WinForm components within CAB (Composite UI Application Block…
  ☆11Dec 16, 2025Updated 2 months ago
• ntestoc3 / burp-scripts

  View on GitHub
  各种burp-clj脚本
  ☆29Feb 5, 2021Updated 5 years ago
• SecNN / SecNN-Wiki

  View on GitHub
  Wiki漏洞库管理系统&网络安全知识库-渗透测试常见漏洞知识库文档-该网站收集了Web应用层漏洞、中间件安全缺陷、系统配置不当、移动端（Android）安全问题、权限提升、RCE、网络设备及IOT安全。
  ☆69Oct 23, 2025Updated 3 months ago
• mrknow001 / API-Explorer

  View on GitHub
  API接口管理工具(目前内置微信公众号、微信小程序、企业微信、飞书、钉钉等)
  ☆753Oct 15, 2024Updated last year
• lxflxfcl / DTGO

  View on GitHub
  DTGO (灯塔狩猎者) 是一个用于批量管理和监控资产灯塔系统任务的图形化工具。它能够自动发现灯塔系统、批量提交任务、监控任务状态，并支持导出任务结果。
  ☆37Feb 10, 2025Updated last year
• pykiller / API-T00L

  View on GitHub
  互联网厂商API利用工具。
  ☆555Sep 13, 2024Updated last year
• fupinglee / WeChatOpenDevTools-AppleSilicon

  View on GitHub
  Mac arm版本微信小程序F12 devtools
  ☆47Dec 19, 2024Updated last year
• qazwsx5293870 / S-XIASQL

  View on GitHub
  S-XIASQL 是一款专业的 Burp Suite SQL注入检测插件，能够自动化检测Web应用中的SQL注入漏洞。通过智能分析HTTP请求响应，快速识别潜在的SQL注入点，大幅提升渗透测试效率。
  ☆34Feb 6, 2026Updated last week
• hy0jer / NoAuthScan

  View on GitHub
  一款支持检测web应用程序未授权访问缺陷的burp suite插件，可自定义配置检测字段以及返回包json数据分析
  ☆12Apr 22, 2024Updated last year
• musana / fuzzuli

  View on GitHub
  fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.
  ☆936Aug 24, 2023Updated 2 years ago
• F6JO / RouteVulScan

  View on GitHub
  Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
  ☆1,314Jun 29, 2024Updated last year
• emo-crab / observer_ward

  View on GitHub
  侦查守卫(observer_ward)Web应用和服务指纹识别工具 （之前误删除了仓库）
  ☆76Feb 1, 2026Updated 2 weeks ago
• zzhorc / tomcat_memshell_scanner0.2

  View on GitHub
  tomcat的servlet、filter、listener内存马查杀工具
  ☆38Sep 20, 2023Updated 2 years ago
• AduraK2 / Go-Yso-Gui

  View on GitHub
  练习Golang的时候写的一个Ysoserial图形化工具
  ☆11Aug 1, 2023Updated 2 years ago