Alternatives and similar repositories for vaf

Users that are interested in vaf are comparing it to the libraries listed below

• daxAKAhackerman / XSS-Catcher
  A blind XSS detection and XSS data capture framework
  ☆172Updated this week
• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆296Updated 9 months ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆218Updated 2 years ago
• kleiton0x00 / ppmap
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆511Updated 3 years ago
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆196Updated last week
• ffuf / pencode
  Complex payload encoder
  ☆228Updated last year
• VainlyStrain / Vailyn
  A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
  ☆198Updated 3 years ago
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆253Updated 11 months ago
• emadshanab / Nmap-NSE-scripts-collection
  ☆170Updated 3 years ago
• Sh1Yo / request_smuggler
  Http request smuggling vulnerability scanner
  ☆227Updated 2 years ago
• dwisiswant0 / ppfuzz
  A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
  ☆624Updated 2 years ago
• Josue87 / AnalyticsRelationships
  Get related domains / subdomains by looking at Google Analytics IDs
  ☆246Updated 3 years ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆266Updated 2 years ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆512Updated last year
• M4DM0e / DirDar
  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
  ☆452Updated last year
• Karmaz95 / crimson
  Web Application Security Testing Tools
  ☆245Updated last year
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆223Updated 2 years ago
• hash3liZer / Subrake
  🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).
  ☆298Updated 8 months ago
• In3tinct / See-SURF
  Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.
  ☆322Updated 2 weeks ago
• Ebryx / GitDump
  A pentesting tool that dumps the source code from .git even when the directory traversal is disabled
  ☆227Updated 3 years ago
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆481Updated 2 years ago
• capt-meelo / MassMap
  Combined port scanning w/ Masscan's speed & Nmap's scanning features.
  ☆153Updated 3 years ago
• storenth / lazyrecon
  Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.
  ☆148Updated 2 years ago
• ARPSyndicate / kenzer
  automated web assets enumeration & scanning [DEPRECATED]
  ☆289Updated 2 years ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆381Updated 3 years ago
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆199Updated 3 weeks ago
• kaimi-io / web-fuzz-wordlists
  Common Web Managers Fuzz Wordlists
  ☆175Updated 3 months ago
• CoolHandSquid / TireFire
  Automate the scanning and enumeration of machines externally while maintaining complete control over scans shot to the target. Comfortabl…
  ☆155Updated last week
• serain / bbrecon
  Python library and CLI for the Bug Bounty Recon API
  ☆226Updated 4 years ago
• hakluke / haklistgen
  Turns any junk text into a usable wordlist for brute-forcing.
  ☆221Updated last year