Alternatives and similar repositories for XSS-Catcher

Users that are interested in XSS-Catcher are comparing it to the libraries listed below

• smaranchand / bucky
  Bucky (An automatic S3 bucket discovery tool)
  ☆198Updated 3 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆163Updated 3 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆211Updated 4 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆167Updated last year
• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆297Updated last year
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆183Updated 4 years ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆219Updated 3 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆129Updated 4 years ago
• six2dez / burp-bounty-profiles
  Burp Bounty profiles compilation, feel free to contribute!
  ☆148Updated 4 years ago
• benso-io / posta
  🐙 Cross-document messaging security research tool powered by https://enso.security
  ☆298Updated 2 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆192Updated 4 years ago
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆147Updated 5 years ago
• yeswehack / xsstools
  xss development frameworks, with the goal of making payload writing easier.
  ☆152Updated last year
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆122Updated 3 years ago
• Leoid / MatchandReplace
  Match and Replace script used to automatically generate JSON option file to BurpSuite
  ☆214Updated 6 years ago
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆271Updated last year
• BitTheByte / Monitorizer
  Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
  ☆282Updated last year
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆85Updated 5 years ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆66Updated 3 years ago
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆226Updated 3 years ago
• BonJarber / SecUtils
  Random utilities from my security projects that might be useful to others
  ☆182Updated 10 months ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆186Updated 3 years ago
• ignis-sec / puff
  Clientside vulnerability / reflected xss fuzzer
  ☆149Updated 2 years ago
• BonJarber / fresh-resolvers
  List of fresh DNS resolvers updated daily
  ☆108Updated 2 years ago
• 0xTeles / jsleak
  a Go code to detect leaks in JS files via regex patterns
  ☆149Updated 4 years ago
• R0X4R / D4rkXSS
  A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF
  ☆171Updated 5 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆156Updated 2 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆155Updated 5 years ago