Alternatives and similar repositories for WAF-bypass-xss-payloads

Users that are interested in WAF-bypass-xss-payloads are comparing it to the libraries listed below

• Net-hunter121 / API-Wordlist
  ☆249Updated 4 years ago
• ifconfig-me / Directory-Traversal-Payloads
  List of Directory Traversal/LFI Payloads Scraped from the Internet
  ☆182Updated 11 months ago
• SirBugs / Priv8-Nuclei-Templates
  My Priv8 Nuclei Templates
  ☆336Updated last year
• ayadim / Nuclei-bug-hunter
  i will upload more templates here to share with the comunity.
  ☆565Updated last year
• SAPT01 / HBSQLI
  Automated Tool for Testing Header Based Blind SQL Injection
  ☆321Updated 2 years ago
• lucsemassa / burp_bug_finder
  Automatic Bug finder with buprsuite
  ☆166Updated 2 years ago
• hisxo / JSpector
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆373Updated 2 years ago
• xnl-h4ck3r / knoxnl
  This is a python wrapper around the amazing KNOXSS API by Brute Logic
  ☆279Updated 3 weeks ago
• aacle / xss_payload
  ☆299Updated 3 years ago
• linuxadi / 40k-nuclei-templates
  40,000+ Nuclei templates for security scanning and detection across diverse web applications and services
  ☆343Updated 2 years ago
• SeifElsallamy / Blind-XSS-Manager
  Never forget where you inject.
  ☆297Updated 5 months ago
• 0xKayala / ParamSpider
  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
  ☆159Updated 10 months ago
• 0x999-x / jsluicepp
  jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
  ☆289Updated last year
• daffainfo / match-replace-burp
  Useful "Match and Replace" burpsuite rules
  ☆362Updated 2 years ago
• shreyaschavhan / 10000-h1-disclosed-reports
  10,000 H1 Disclosed Reports
  ☆118Updated last year
• ifconfig-me / SQL_Injection-Techniques
  Advanced SQL Injection Techniques for Bug Bounty Hunters
  ☆143Updated 11 months ago
• SirBugs / endext
  EndExt is a .go tool for extracting all the possible endpoints from the JS files
  ☆219Updated last year
• x1337loser / Dependency-Confusion
  All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)
  ☆301Updated last year
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆361Updated 3 years ago
• daffainfo / Oneliner-Bugbounty
  A collection oneliner scripts for bug bounty
  ☆181Updated last year
• reewardius / Nuclei-AI-Prompts
  Nuclei-AI-Prompts
  ☆350Updated 7 months ago
• root-tanishq / userefuzz
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆381Updated 2 years ago
• osamahamad / FUZZING
  Collected fuzzing payloads from different resources
  ☆126Updated 2 weeks ago
• shreyaschavhan / advanced-sql-injection-for-awae
  ☆206Updated last year
• reewardius / bbFuzzing.txt
  ☆417Updated 3 weeks ago
• bnematzadeh / LoggerPlusPlus-API-Filters
  A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles
  ☆234Updated last year
• danialhalo / SqliSniper
  Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers
  ☆308Updated last year
• leetCipher / bug-bounty-labs
  All the labs in this repository simulate real world bugs I found in the wild
  ☆197Updated last year
• CharanRayudu / Custom-Nuclei-Templates
  ☆129Updated 4 years ago
• ShadowByte1 / XSS
  ☆128Updated 5 months ago