Alternatives and similar repositories for Bypassing-Web-Application-Firewalls

Users that are interested in Bypassing-Web-Application-Firewalls are comparing it to the libraries listed below

• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆256Updated last month
• s1kr10s / Apache-Struts-v4
  ☆206Updated 4 years ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆425Updated 5 years ago
• pathetiq / BurpSmartBuster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆383Updated 4 years ago
• trietptm / SQL-Injection-Payloads
  SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
  ☆232Updated 5 years ago
• IFGHou / wapiti
  A web-application vulnerability scanner
  ☆117Updated 4 years ago
• AonCyberLabs / xxe-recursive-download
  ☆231Updated 9 years ago
• 0xR0 / shellver
  Reverse Shell Cheat Sheet TooL
  ☆296Updated 5 years ago
• bitvijays / Pentest-Scripts
  Github for the scripts utilised during Penetration test
  ☆235Updated 8 years ago
• ewilded / psychoPATH
  psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…
  ☆276Updated 4 years ago
• bugbountyforum / XSS-Radar
  ☆326Updated 7 years ago
• nashcontrol / bounty-monitor
  Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …
  ☆219Updated 2 years ago
• nccgroup / shocker
  A tool to find and exploit servers vulnerable to Shellshock
  ☆333Updated 2 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆291Updated 2 years ago
• Plazmaz / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆117Updated 6 years ago
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆203Updated last year
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆227Updated 5 months ago
• wafpassproject / wafpass
  Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.
  ☆222Updated last year
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆214Updated 8 months ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆127Updated 8 years ago
• RhinoSecurityLabs / SleuthQL
  Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.
  ☆469Updated 5 years ago
• tijme / angularjs-csti-scanner
  Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
  ☆318Updated 3 years ago
• orangetw / Tiny-URL-Fuzzer
  A tiny and cute URL fuzzer
  ☆395Updated 2 years ago
• cheetz / sslScrape
  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
  ☆333Updated 4 years ago
• 003random / 003Recon
  Some tools to automate recon - 003random
  ☆294Updated 7 years ago
• incredibleindishell / sqlite-lab
  This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is f…
  ☆160Updated 3 years ago
• 0ang3el / EasyCSRF
  ☆162Updated 7 years ago
• FSecureLABS / dref
  DNS Rebinding Exploitation Framework
  ☆490Updated 4 years ago
• gottburgm / Exploits
  Containing Self Made Perl Reproducers / PoC Codes
  ☆194Updated 5 years ago
• Coalfire-Research / java-deserialization-exploits
  A collection of curated Java Deserialization Exploits
  ☆593Updated 4 years ago