Alternatives and similar repositories for project-black:

Users that are interested in project-black are comparing it to the libraries listed below

• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆196Updated 3 years ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆274Updated 4 years ago
• wish-i-was / femida
  Automated blind-xss search for Burp Suite
  ☆283Updated 5 years ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆328Updated last year
• MilindPurswani / Syborg
  Recursive DNS Subdomain Enumerator with dead-end avoidance system (BETA)
  ☆144Updated 3 years ago
• nashcontrol / bounty-monitor
  Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …
  ☆220Updated 2 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆284Updated 2 months ago
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆310Updated last year
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆258Updated 3 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆214Updated 5 months ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆152Updated 2 years ago
• Bo0oM / WAF-bypass-Cheat-Sheet
  Another way to bypass WAF Cheat Sheet (draft)
  ☆421Updated 6 years ago
• SilverPoision / Rock-ON
  Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.
  ☆293Updated 5 years ago
• neex / gifoeb
  exploit for ImageMagick's uninitialized memory disclosure in gif coder
  ☆280Updated 7 years ago
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆254Updated 9 months ago
• irsdl / httpninja
  HTTP.ninja
  ☆149Updated last year
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆344Updated 3 years ago
• laconicwolf / burp-extensions
  A collection of scripts to extend Burp Suite
  ☆141Updated 5 years ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆235Updated 4 years ago
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆223Updated 2 months ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆138Updated 5 years ago
• random-robbie / Jira-Scan
  CVE-2017-9506 - SSRF
  ☆188Updated 3 years ago
• kapytein / jsonp
  jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
  ☆150Updated 4 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆244Updated 2 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆133Updated last year
• SilverPoision / a-full-list-of-wordlists
  this contain the burp pack
  ☆207Updated 8 years ago
• theblackturtle / fprobe
  Take a list of domains/subdomains and probe for working http/https server.
  ☆186Updated 4 years ago
• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆298Updated 4 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆325Updated 2 years ago
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆295Updated 5 years ago