Alternatives and similar repositories for LFI-Payload-List

Users that are interested in LFI-Payload-List are comparing it to the libraries listed below

• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆128Updated 6 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆122Updated 3 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆131Updated 4 years ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆127Updated 4 years ago
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆148Updated 5 years ago
• imrannissar / Content-discovery
  ☆96Updated 5 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• victoni / Bug-Bounty-Scripts
  The scripts I write to help me on my bug bounty hunting
  ☆123Updated 3 years ago
• panch0r3d / nuclei-templates
  ☆90Updated 4 years ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Updated 4 years ago
• pikpikcu / nuclei-templates
  Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.
  ☆62Updated 3 months ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• eslam3kl / crtfinder
  Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search…
  ☆115Updated 4 years ago
• darklotuskdb / sd-goo
  Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)
  ☆125Updated 6 months ago
• ethicalhackingplayground / wordlistgen
  Generates target specific word lists for Fuzzing with fuff
  ☆112Updated 5 years ago
• R0X4R / bhedak
  A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.
  ☆109Updated 3 years ago
• clarkvoss / Nuclei-Templates
  ☆86Updated 3 years ago
• rammarj / csrf-poc-creator
  A Burp Suite extension for CSRF proof of concepts.
  ☆57Updated 2 years ago
• obheda12 / MoneyScope
  A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities
  ☆105Updated 4 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆168Updated last year
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• JavierOlmedo / UltimateCMSWordlists
  📚 An ultimate collection wordlists of the best-known CMS
  ☆92Updated last year
• NitinYadav00 / My-Nuclei-Templates
  Nuclei Templates - Here you will find the templates I use while hunting
  ☆119Updated 4 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆228Updated last year
• MrMax4o4 / Hunting-Tips
  ☆11Updated 5 years ago
• KingOfBugbounty / KingRecon_DOD
  ☆78Updated last year
• ethicalhackingplayground / TProxer
  A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
  ☆184Updated 4 years ago
• smackerdodi / domain-ip
  this tool take a list of subdomains and give you the ip for each
  ☆20Updated 5 years ago
• hahwul / XSS-Payload-without-Anything
  XSS Payload without Anything.
  ☆104Updated 6 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆60Updated 2 years ago