Alternatives and similar repositories for SSTI-FINDER

Users that are interested in SSTI-FINDER are comparing it to the libraries listed below

• topscoder / nuclei-zero-day
  This repository contains random Nuclei templates I've created. Most of them based on recent security issues and exploits.
  ☆15Updated last year
• gotr00t0day / CVE-2024-4040
  A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticat…
  ☆8Updated last year
• mathis2001 / ParamFirstCheck
  ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …
  ☆35Updated last year
• enenumxela / ps.sh
  A bash script that automates the process of service discovery on specified target hosts. The aim of the scripts is reducing scan time, in…
  ☆13Updated 2 months ago
• reewardius / bugbounty-dorks
  ☆8Updated last year
• D3Ext / xdebug-exploit
  xdebug 2.5.5 RCE exploit
  ☆31Updated 6 months ago
• 0xPugal / monitor.sh
  Continuous Reconnaissance and Vulnerability Scanning for Bug Bounties
  ☆18Updated last year
• S12cybersecurity / Automatic-Blind-SQL-Injection
  Automate Blind SQL Injection with Python.
  ☆23Updated 2 years ago
• devanshbatham / revwhoix
  A simple utility to perform reverse WHOIS lookups using whoisxml API
  ☆44Updated 2 years ago
• aliyugombe / reflector
  ☆15Updated 2 years ago
• Cappricio-Securities / ghostrecon
  gh0str3con is a All in one cloud based web Recon tool.
  ☆22Updated last year
• 0xElkot / wp-json-extractor
  ☆19Updated last year
• nico989 / B1pass3r
  Python tool to test known techniques to bypass 403 and 401 HTTP responses.
  ☆37Updated 2 years ago
• atulxerma / subtron
  "🔍 Subtron: Bash-driven subdomain seeker. Utilizes Subfinder, Amass, Assetfinder, and HTTPX to swiftly uncover live domains. Results sto…
  ☆23Updated last month
• matthernet / SubdomainFinder
  Find subdomains by searching public certificate records
  ☆16Updated last year
• faiyazahmad07 / SSTI_DETECTOR
  This tool allows you to find ssti vulnerability with ease!
  ☆21Updated 2 years ago
• gotr00t0day / F5-BIG-IP-Scanner
  F5 BIG-IP Scanner scans for servers on shodan and checks to see if they are vulnerable.
  ☆18Updated 2 years ago
• HernanRodriguez1 / ScanReflectedSSTI
  Template Nuclei SSTI
  ☆31Updated last year
• Cr0DiX666 / RSecxXx_MassDork
  Priv8 Tools Software Mass Dork Auto Exploit.
  ☆13Updated 2 years ago
• ninjhacks / unja
  Fetch & Filter Known URLs
  ☆15Updated 3 years ago
• ynsmroztas / CVE-2025-4123-Exploit-Tool-Grafana-
  CVE-2025-4123 - Grafana Tool
  ☆22Updated 2 months ago
• machine1337 / lfiscan
  A small and fast bash script to automate LFI vulnerability.
  ☆11Updated 2 years ago
• xnl-h4ck3r / auto-repeater
  Automated HTTP Request Repeating With Burp Suite
  ☆39Updated 2 years ago
• Chocapikk / CVE-2023-5360
  Exploit for the unauthenticated file upload vulnerability in WordPress's Royal Elementor Addons and Templates plugin (< 1.3.79). CVE-ID: …
  ☆9Updated last year
• Anof-cyber / AlphaScan
  A BurpSuite extension for vulnerability Scanning
  ☆27Updated last year
• CrazyProger1 / Simple-XSS
  Simple-XSS is a multiplatform cross-site scripting (XSS) vulnerability exploitation tool.
  ☆48Updated last month
• 0xPugal / bugbounty_profile
  Automate bug bounty recon using bash alias
  ☆14Updated last year
• Stuub / CVE-2024-31848-PoC
  PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal
  ☆17Updated last year
• System00-Security / findbbprograms
  Check if domain has bug bounty program or not
  ☆28Updated 2 years ago
• dragonked2 / 2fa
  my own 2fa bypass methodolgy
  ☆24Updated last year