Alternatives and similar repositories for XSS-Catcher

Users that are interested in XSS-Catcher are comparing it to the libraries listed below

• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆296Updated last year
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆131Updated 4 years ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆219Updated 3 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆167Updated last year
• smaranchand / bucky
  Bucky (An automatic S3 bucket discovery tool)
  ☆197Updated 3 years ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆163Updated 2 years ago
• benso-io / posta
  🐙 Cross-document messaging security research tool powered by https://enso.security
  ☆297Updated 2 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆211Updated 4 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 3 years ago
• Josue87 / AnalyticsRelationships
  Get related domains / subdomains by looking at Google Analytics IDs
  ☆250Updated 3 years ago
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆146Updated 5 years ago
• Leoid / MatchandReplace
  Match and Replace script used to automatically generate JSON option file to BurpSuite
  ☆215Updated 6 years ago
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆179Updated 4 years ago
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆264Updated last year
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆84Updated 5 years ago
• geeknik / the-nuclei-templates
  Nuclei templates written by geeknik. Claude is my co-pilot. 🤖
  ☆279Updated 2 months ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆66Updated 3 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆194Updated 4 years ago
• BonJarber / fresh-resolvers
  List of fresh DNS resolvers updated daily
  ☆108Updated 2 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆155Updated 5 years ago
• dwisiswant0 / gf-secrets
  Secret and/or credential patterns used for gf.
  ☆241Updated 2 years ago
• BonJarber / SecUtils
  Random utilities from my security projects that might be useful to others
  ☆182Updated 8 months ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆126Updated 4 years ago
• six2dez / burp-bounty-profiles
  Burp Bounty profiles compilation, feel free to contribute!
  ☆148Updated 4 years ago
• yeswehack / xsstools
  xss development frameworks, with the goal of making payload writing easier.
  ☆147Updated last year
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆183Updated 3 years ago
• ameenmaali / wordlistgen
  Quickly generate context-specific wordlists for content discovery from lists of URLs or paths
  ☆230Updated 3 years ago
• rotemreiss / uddup
  Urls de-duplication tool for better recon.
  ☆145Updated 4 months ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆125Updated 4 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago