Alternatives and similar repositories for padre

Users that are interested in padre are comparing it to the libraries listed below

• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆162Updated 9 months ago
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆261Updated 2 months ago
• iustin24 / chameleon
  ☆378Updated 2 years ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆356Updated 3 weeks ago
• devanshbatham / headerpwn
  A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
  ☆341Updated last year
• sw33tLie / sns
  IIS shortname scanner written in Go
  ☆333Updated 2 years ago
• ffuf / pencode
  Complex payload encoder
  ☆225Updated last year
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆308Updated 6 months ago
• sw33tLie / uff
  unleashed ffuf
  ☆199Updated this week
• trufflesecurity / of-CORS
  ☆152Updated last year
• Brum3ns / firefly
  Black box fuzzer for web applications
  ☆426Updated 10 months ago
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆159Updated 6 months ago
• nxenon / h2spacex
  HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆177Updated last week
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆255Updated last year
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆655Updated last month
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆351Updated 3 years ago
• kleiton0x00 / ppmap
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆508Updated 2 years ago
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆638Updated last year
• dhmosfunk / CVE-2023-25690-POC
  CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …
  ☆283Updated 9 months ago
• edoardottt / csprecon
  Discover new target domains using Content Security Policy
  ☆433Updated 2 weeks ago
• nxenon / grpc-pentest-suite
  gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications
  ☆220Updated 3 months ago
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆189Updated 3 months ago
• carlospolop / fuzzhttpbypass
  This tool use fuuzzing to try to bypass unknown authentication methods, who knows...
  ☆248Updated 9 months ago
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆131Updated 2 years ago
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆368Updated 2 years ago
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆177Updated last year
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆138Updated 5 months ago
• duc-nt / CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
  CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
  ☆271Updated 2 years ago
• doyensec / Session-Hijacking-Visual-Exploitation
  Session Hijacking Visual Exploitation
  ☆200Updated last year
• voidz0r / CVE-2022-44268
  A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
  ☆216Updated 2 months ago