Alternatives and similar repositories for burp-dom-scanner

Users that are interested in burp-dom-scanner are comparing it to the libraries listed below

• hisxo / JSpector

  View on GitHub
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆373Jul 25, 2023Updated 2 years ago
• qianniaoge / Honeypot-Detection

  View on GitHub
  蜜罐检测工具，支持自动化URL去重、多线程控制及智能速率限制。可识别伪装服务。
  ☆16Jun 5, 2025Updated 8 months ago
• hcbaker / Klyda

  View on GitHub
  Highly configurable script for dictionary/spray attacks against online web applications.
  ☆53Nov 8, 2022Updated 3 years ago
• Impact-I / x8-Burp

  View on GitHub
  Hidden parameters discovery suite
  ☆225Nov 14, 2022Updated 3 years ago
• HernanRodriguez1 / SQLi_Sleeps

  View on GitHub
  ☆124Aug 24, 2025Updated 5 months ago
• phlmox / BurpJSLinkFinderv2

  View on GitHub
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆56Nov 20, 2024Updated last year
• hisxo / ReconAIzer

  View on GitHub
  A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…
  ☆886May 3, 2023Updated 2 years ago
• xnl-h4ck3r / GAP-Burp-Extension

  View on GitHub
  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
  ☆1,495Jan 8, 2026Updated last month
• AsaiKen / dom-based-xss-finder

  View on GitHub
  Chrome extension that finds DOM based XSS vulnerabilities
  ☆75Jun 3, 2025Updated 8 months ago
• fcavallarin / domdig

  View on GitHub
  DOM XSS scanner for Single Page Applications
  ☆417Nov 15, 2025Updated 3 months ago
• Th0h0 / autossrf

  View on GitHub
  Smart context-based SSRF vulnerability scanner.
  ☆361May 5, 2022Updated 3 years ago
• daffainfo / match-replace-burp

  View on GitHub
  Useful "Match and Replace" burpsuite rules
  ☆362Sep 26, 2023Updated 2 years ago
• nico989 / snmpPoC

  View on GitHub
  SNMP Bash Script to discover valid community strings, dump basic information, check for write permission and check for RCE.
  ☆11Apr 27, 2024Updated last year
• RapidDNS / Afuzz

  View on GitHub
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆311Jul 15, 2023Updated 2 years ago
• zelat / BurpCopilot

  View on GitHub
  基于AI的BurpSuite漏洞分析插件
  ☆11Sep 21, 2023Updated 2 years ago
• 0xPugal / fuzz4bounty

  View on GitHub
  1337 Wordlists for Bug Bounty Hunting
  ☆928Feb 9, 2026Updated last week
• securebinary / firebaseExploiter

  View on GitHub
  FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…
  ☆175Nov 7, 2022Updated 3 years ago
• root-tanishq / userefuzz

  View on GitHub
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆382May 19, 2023Updated 2 years ago
• BugBountyzip / Bambdas

  View on GitHub
  ☆138Nov 9, 2024Updated last year
• RevoltSecurities / Probuster

  View on GitHub
  Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.
  ☆60Nov 22, 2024Updated last year
• nullt3r / jfscan

  View on GitHub
  JF⚡can - Super fast port scanning & service discovery using Masscan and Nmap. Scan large networks with Masscan and use Nmap's scripting a…
  ☆667Jan 15, 2025Updated last year
• alexlauerman / IncrementMePlease

  View on GitHub
  Burp extension to increment a parameter in each active scan request
  ☆12Jul 16, 2025Updated 6 months ago
• smokeme / ProxyNotShell

  View on GitHub
  ☆19Oct 2, 2022Updated 3 years ago
• ynsmroztas / CVE-2025-4123-Exploit-Tool-Grafana-

  View on GitHub
  CVE-2025-4123 - Grafana Tool
  ☆30Jun 4, 2025Updated 8 months ago
• 86x / CVE-2023-32353-PoC

  View on GitHub
  Proof of Concept Code for CVE-2023-32353: Local privilege escalation via iTunes in Windows
  ☆34Jun 9, 2023Updated 2 years ago
• hy0jer / NoAuthScan

  View on GitHub
  一款支持检测web应用程序未授权访问缺陷的burp suite插件，可自定义配置检测字段以及返回包json数据分析
  ☆12Apr 22, 2024Updated last year
• sl4x0 / subfree

  View on GitHub
  Your subdomains are free for the taking - no API key, no mistaking! 🕺
  ☆36Feb 27, 2023Updated 2 years ago
• attl4s / freeMetsrvLoader

  View on GitHub
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆35Mar 28, 2023Updated 2 years ago
• haticeerturk / scoper

  View on GitHub
  This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.
  ☆97Jan 2, 2025Updated last year
• M4DM0e / DirDar

  View on GitHub
  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
  ☆453Jan 9, 2024Updated 2 years ago
• xnl-h4ck3r / xnLinkFinder

  View on GitHub
  A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets
  ☆1,515Jan 15, 2026Updated last month
• edoardottt / missing-cve-nuclei-templates

  View on GitHub
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆423Updated this week
• SevenStones / auditpolCIS

  View on GitHub
  CIS Benchmark testing of Windows SIEM configuration
  ☆45May 25, 2023Updated 2 years ago
• lucsemassa / burp_bug_finder

  View on GitHub
  Automatic Bug finder with buprsuite
  ☆166Mar 6, 2023Updated 2 years ago
• Sharpforce / XSS-Exploitation-Tool

  View on GitHub
  An XSS Exploitation Tool
  ☆337Dec 5, 2025Updated 2 months ago
• xnl-h4ck3r / HandE-Burp-Extension

  View on GitHub
  H&E- Burp Highlighter and Extractor
  ☆18Mar 29, 2023Updated 2 years ago
• zzzteph / probable_subdomains

  View on GitHub
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆244Jun 8, 2025Updated 8 months ago
• 0x727 / BypassPro

  View on GitHub
  对Auth/Waf 自动化bypass的burpsuite插件
  ☆1,073Jan 26, 2026Updated 3 weeks ago
• stark0de / ocr-recon

  View on GitHub
  This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities
  ☆32Jan 17, 2022Updated 4 years ago