Alternatives and similar repositories for SSRF-Testing

Users that are interested in SSRF-Testing are comparing it to the libraries listed below

• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,457Updated 4 months ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,697Updated last year
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,765Updated last year
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,457Updated last year
• ssl / ezXSS
  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
  ☆2,220Updated 3 weeks ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆4,106Updated last year
• irsdl / IIS-ShortName-Scanner
  latest version of scanners for IIS short filename (8.3) disclosure vulnerability
  ☆1,612Updated 2 years ago
• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆3,276Updated 2 years ago
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,123Updated last year
• RenwaX23 / XSS-Payloads
  List of XSS Vectors/Payloads
  ☆1,354Updated last year
• PortSwigger / turbo-intruder
  Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
  ☆1,694Updated 3 weeks ago
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,895Updated 3 years ago
• Quitten / Autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆1,121Updated 6 months ago
• PortSwigger / param-miner
  ☆1,399Updated this week
• chenjj / CORScanner
  🎯 Fast CORS misconfiguration vulnerabilities scanner
  ☆1,137Updated 4 years ago
• GerbenJavado / LinkFinder
  A python script that finds endpoints in JavaScript files
  ☆4,241Updated last year
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,535Updated 3 years ago
• elkokc / reflector
  Burp plugin able to find reflected XSS on page in real-time while browsing on site
  ☆1,196Updated 4 years ago
• masatokinugawa / filterbypass
  Browser's XSS Filter Bypass Cheat Sheet
  ☆1,149Updated 8 years ago
• nccgroup / AutoRepeater
  Automated HTTP Request Repeating With Burp Suite
  ☆890Updated 4 years ago
• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,611Updated 4 years ago
• PortSwigger / http-request-smuggler
  ☆1,173Updated 3 months ago
• bugcrowd / HUNT
  ☆2,307Updated 2 years ago
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆2,050Updated 2 years ago
• joaomatosf / jexboss
  JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
  ☆2,489Updated 5 years ago
• m4ll0k / Atlas
  Quick SQLMap Tamper Suggester
  ☆1,393Updated 3 years ago
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,343Updated 10 months ago
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆2,090Updated last year
• maK- / parameth
  This tool can be used to brute discover GET and POST parameters
  ☆1,388Updated 6 years ago
• assetnote / wordlists
  Automated & Manual Wordlists provided by Assetnote
  ☆1,587Updated 2 weeks ago