☆334Jan 8, 2018Updated 8 years ago
Alternatives and similar repositories for XSS-Radar
Users that are interested in XSS-Radar are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆549Jun 12, 2017Updated 9 years ago
- BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.☆164Apr 24, 2025Updated last year
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆306Oct 14, 2018Updated 7 years ago
- This tool can be used to brute discover GET and POST parameters☆1,395Aug 24, 2019Updated 6 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆260Aug 22, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆228May 8, 2018Updated 8 years ago
- Actarus is a custom tool for bug bounty☆75Nov 14, 2019Updated 6 years ago
- ☆250Jun 6, 2018Updated 8 years ago
- ☆842Nov 13, 2023Updated 2 years ago
- The XSS Hunter service - a portable version of XSSHunter.com☆1,553Dec 7, 2022Updated 3 years ago
- Stealing CSRF tokens with CSS injection (without iFrames)☆323Feb 7, 2018Updated 8 years ago
- A tiny and cute URL fuzzer☆403Nov 10, 2022Updated 3 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆565Aug 25, 2022Updated 3 years ago
- Second-order subdomain takeover scanner☆405Mar 29, 2026Updated 2 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- SSRF (Server Side Request Forgery) testing resources☆2,498Oct 12, 2024Updated last year
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆633Feb 5, 2019Updated 7 years ago
- Some tools to automate recon - 003random☆295Jun 5, 2018Updated 8 years ago
- Browser's XSS Filter Bypass Cheat Sheet☆1,155May 6, 2017Updated 9 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆379Oct 12, 2020Updated 5 years ago
- Maintaining account persistence via XSS and Oauth☆78Jan 7, 2019Updated 7 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆426Feb 18, 2020Updated 6 years ago
- Setup script for Regon-ng☆942Nov 17, 2020Updated 5 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,163Apr 21, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A python script that finds endpoints in JavaScript files☆4,382Apr 13, 2024Updated 2 years ago
- Vulnerability scanner based on vulners.com search API☆896Oct 1, 2025Updated 8 months ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,171Dec 16, 2024Updated last year
- A script to enumerate virtual hosts on a server.☆693Dec 28, 2017Updated 8 years ago
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆324Oct 20, 2021Updated 4 years ago
- DOM XSS scanner for Single Page Applications☆416Nov 15, 2025Updated 6 months ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,293Jun 5, 2026Updated last week
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,143Jun 25, 2019Updated 6 years ago
- a .js scanner, built in php. designed to scrape urls and other info☆229Aug 22, 2017Updated 8 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.☆222Oct 16, 2023Updated 2 years ago
- 用于扫描git,svn泄露☆78Jul 29, 2015Updated 10 years ago
- Inventus is a spider designed to find subdomains of a specific domain by crawling it and any subdomains it discovers.☆82Aug 28, 2017Updated 8 years ago
- A container repository for my public web hacks!☆2,025Oct 12, 2022Updated 3 years ago
- XSS Hunter Burp Plugin☆152Aug 31, 2018Updated 7 years ago
- Multi Tool Subdomain Enumeration☆723Apr 11, 2021Updated 5 years ago
- A Tool for Domain Flyovers☆5,940May 22, 2022Updated 4 years ago