Alternatives and similar repositories for ppfuzz

Users that are interested in ppfuzz are comparing it to the libraries listed below

• kleiton0x00 / ppmap
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆512Updated 3 years ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆522Updated last year
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆388Updated 3 years ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆893Updated 3 years ago
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆776Updated last year
• projectdiscovery / fuzzing-templates
  Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
  ☆74Updated last year
• honoki / bbrf-client
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆633Updated 2 months ago
• xm1k3 / cent
  Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…
  ☆1,005Updated 3 weeks ago
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆798Updated last month
• RenwaX23 / XSSTRON
  Electron JS Browser To Find XSS Vulnerabilities Automatically
  ☆709Updated 4 years ago
• BlackFan / content-type-research
  Content-Type Research
  ☆631Updated 2 months ago
• KathanP19 / Gxss
  A tool to check a bunch of URLs that contain reflecting params.
  ☆591Updated last year
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆670Updated last year
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆489Updated 3 years ago
• projectdiscovery / chaos-client
  Go client to communicate with Chaos DB API.
  ☆766Updated last week
• ayoubfathi / leaky-paths
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆989Updated last year
• iustin24 / chameleon
  ☆380Updated 2 years ago
• ksharinarayanan / SSRFire
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆963Updated 3 years ago
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆752Updated 3 years ago
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆373Updated 2 years ago
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆320Updated 2 months ago
• M4DM0e / DirDar
  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
  ☆454Updated last year
• tomnomnom / qsreplace
  Accept URLs on stdin, replace all query string values with a user-supplied value
  ☆838Updated 2 years ago
• mdsecresearch / BurpSuiteSharpener
  ☆522Updated 2 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆519Updated 2 years ago
• barrracud4 / image-upload-exploits
  This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…
  ☆340Updated 4 years ago
• PalindromeLabs / STEWS
  A Security Tool for Enumerating WebSockets
  ☆360Updated 3 years ago
• trufflesecurity / xsshunter
  ☆498Updated last week
• Hackmanit / Web-Cache-Vulnerability-Scanner
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆1,007Updated last week
• robre / jsmon
  a javascript change monitoring tool for bugbounties
  ☆659Updated last year