Alternatives and similar repositories for badsecrets

Users that are interested in badsecrets are comparing it to the libraries listed below

• luigigubello / PayloadsAllThePDFs
  PDF Files for Pentesting
  ☆692Updated last year
• hansmach1ne / LFImap
  Local File Inclusion discovery and exploitation tool
  ☆333Updated last year
• waf-bypass-maker / waf-community-bypasses
  ☆545Updated last year
• p0dalirius / ApacheTomcatScanner
  A python script to scan for Apache Tomcat server vulnerabilities.
  ☆888Updated 3 weeks ago
• projectdiscovery / fuzzing-templates
  Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
  ☆87Updated last year
• bitquark / shortscan
  An IIS short filename enumeration tool
  ☆1,099Updated last year
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆716Updated last week
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆423Updated this week
• dhmosfunk / CVE-2023-25690-POC
  CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …
  ☆283Updated last year
• trufflesecurity / xsshunter
  ☆537Updated 2 months ago
• p0dalirius / webapp-wordlists
  This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contai…
  ☆535Updated last year
• musana / fuzzuli
  fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.
  ☆934Updated 2 years ago
• AggressiveUser / AllForOne
  AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,
  ☆731Updated last year
• n0kovo / n0kovo_subdomains
  An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.
  ☆758Updated 2 years ago
• mdsecresearch / BurpSuiteSharpener
  ☆523Updated 2 years ago
• PortSwigger / bambdas
  Bambdas collection for Burp Suite Professional and Community.
  ☆486Updated 2 weeks ago
• projectdiscovery / alterx
  Fast and customizable subdomain wordlist generator using DSL
  ☆915Updated this week
• PalindromeLabs / STEWS
  A Security Tool for Enumerating WebSockets
  ☆365Updated 4 years ago
• peass-ng / CloudPEASS
  ☆617Updated last month
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆749Updated 2 years ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆402Updated last month
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆361Updated 3 years ago
• CravateRouge / autobloody
  Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound
  ☆668Updated 3 months ago
• irsl / curlshell
  reverse shell using curl
  ☆476Updated last year
• sAjibuu / Upload_Bypass
  A simple tool for bypassing file upload restrictions.
  ☆890Updated last year
• intrudir / BypassFuzzer
  Fuzz 401/403/404 pages for bypasses
  ☆383Updated 2 weeks ago
• hisxo / JSpector
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆373Updated 2 years ago
• Edr4 / XSS-Bypass-Filters
  ☆582Updated 5 months ago
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆181Updated last year
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆103Updated 6 months ago