Alternatives and similar repositories for oauth-labs:

Users that are interested in oauth-labs are comparing it to the libraries listed below

• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆57Updated 7 months ago
• codewhitesec / HttpRemotingObjRefLeak
  Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
  ☆85Updated 9 months ago
• doyensec / Prototype-Pollution-Gadgets-Finder
  ☆85Updated 8 months ago
• Moopinger / CLZero
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆85Updated 11 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆251Updated 8 months ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆60Updated 2 years ago
• fcavallarin / burp-dom-scanner
  Burp Suite's extension to scan and crawl Single Page Applications
  ☆100Updated last year
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆72Updated 2 months ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆120Updated 6 months ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆68Updated last year
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆88Updated 7 months ago
• puzzlepeaches / ffufw
  ☆137Updated 8 months ago
• sw33tLie / uff
  unleashed ffuf
  ☆107Updated 6 months ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆117Updated last year
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆128Updated last month
• 0xAnuj / Blinks
  Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…
  ☆113Updated last month
• PortSwigger / auth-analyzer
  ☆74Updated 8 months ago
• 0xAwali / Blind-SSRF
  Nuclei Templates to reproduce Cracking the lens's Research
  ☆124Updated 3 years ago
• PortSwigger / server-side-prototype-pollution
  ☆33Updated last year
• PortSwigger / splitting-the-email-atom
  ☆70Updated 3 months ago
• The-Login / DNS-Analyzer
  A Burp Suite extension for finding DNS vulnerabilities in web applications!
  ☆94Updated last year
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆129Updated last year
• projectdiscovery / nuclei-templates-ai
  Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…
  ☆61Updated last month
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆68Updated 10 months ago
• dsecuredcom / ffufPostprocessing
  Golang tool which helps dropping the irrelevant entries from your ffuf result file.
  ☆127Updated 4 months ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆31Updated 2 months ago
• projectdiscovery / network-fingerprint
  A fingerprint generation helper for nuclei network templates
  ☆72Updated 2 years ago
• emadshanab / BChecks-Collection
  BChecks collection for Burp Suite Professional
  ☆85Updated 7 months ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆54Updated last year
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆88Updated last year