☆332Jan 8, 2018Updated 8 years ago
Alternatives and similar repositories for XSS-Radar
Users that are interested in XSS-Radar are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆549Jun 12, 2017Updated 8 years ago
- BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.☆162Apr 24, 2025Updated 11 months ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆304Oct 14, 2018Updated 7 years ago
- This tool can be used to brute discover GET and POST parameters☆1,393Aug 24, 2019Updated 6 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆259Aug 22, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆227May 8, 2018Updated 7 years ago
- Actarus is a custom tool for bug bounty☆77Nov 14, 2019Updated 6 years ago
- ☆250Jun 6, 2018Updated 7 years ago
- ☆836Nov 13, 2023Updated 2 years ago
- The XSS Hunter service - a portable version of XSSHunter.com☆1,545Dec 7, 2022Updated 3 years ago
- Stealing CSRF tokens with CSS injection (without iFrames)☆324Feb 7, 2018Updated 8 years ago
- A tiny and cute URL fuzzer☆402Nov 10, 2022Updated 3 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆562Aug 25, 2022Updated 3 years ago
- Second-order subdomain takeover scanner☆402Mar 29, 2026Updated 2 weeks ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- SSRF (Server Side Request Forgery) testing resources☆2,485Oct 12, 2024Updated last year
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆628Feb 5, 2019Updated 7 years ago
- Some tools to automate recon - 003random☆294Jun 5, 2018Updated 7 years ago
- Browser's XSS Filter Bypass Cheat Sheet☆1,152May 6, 2017Updated 8 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆378Oct 12, 2020Updated 5 years ago
- Maintaining account persistence via XSS and Oauth☆78Jan 7, 2019Updated 7 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆426Feb 18, 2020Updated 6 years ago
- Setup script for Regon-ng☆939Nov 17, 2020Updated 5 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,140Apr 21, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A python script that finds endpoints in JavaScript files☆4,324Apr 13, 2024Updated 2 years ago
- Vulnerability scanner based on vulners.com search API☆888Oct 1, 2025Updated 6 months ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,139Dec 16, 2024Updated last year
- A script to enumerate virtual hosts on a server.☆691Dec 28, 2017Updated 8 years ago
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆325Oct 20, 2021Updated 4 years ago
- DOM XSS scanner for Single Page Applications☆414Nov 15, 2025Updated 4 months ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,259Jan 8, 2026Updated 3 months ago
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,140Jun 25, 2019Updated 6 years ago
- a .js scanner, built in php. designed to scrape urls and other info☆228Aug 22, 2017Updated 8 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.☆222Oct 16, 2023Updated 2 years ago
- 用于扫描git,svn泄露☆78Jul 29, 2015Updated 10 years ago
- Inventus is a spider designed to find subdomains of a specific domain by crawling it and any subdomains it discovers.☆81Aug 28, 2017Updated 8 years ago
- A container repository for my public web hacks!☆2,022Oct 12, 2022Updated 3 years ago
- XSS Hunter Burp Plugin☆151Aug 31, 2018Updated 7 years ago
- Multi Tool Subdomain Enumeration☆723Apr 11, 2021Updated 5 years ago
- A Tool for Domain Flyovers☆5,921May 22, 2022Updated 3 years ago