Alternatives and similar repositories for security

Users that are interested in security are comparing it to the libraries listed below

• pelaohxc / postMessageFinder
  ☆37Updated 4 years ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆57Updated 5 years ago
• caffeinedoom / Subvenkon
  Subvenkon is a subdomain enumerator from Venkon
  ☆23Updated 4 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆44Updated 2 years ago
• Damian89 / simple-oob-scanner
  Simple tool to test for SSRF/OOB HTTP Read within the Path of a request
  ☆30Updated 5 years ago
• ettic-team / EndpointFinder-Burp
  ☆32Updated 5 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆60Updated 3 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆64Updated 4 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆64Updated 5 years ago
• sw33tLie / ugly-scripts
  A collection of scripts for bug-bounty related stuff
  ☆38Updated 4 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆41Updated 4 years ago
• profmoriarity / wfuxx
  web-based-fuzzer
  ☆32Updated 4 years ago
• JesseClarkND / abnormalizer
  unicode abnormalizer to takes a unicode string and abnormalizes it by character replacment
  ☆27Updated 4 years ago
• joefizz / autofindomain
  ☆24Updated 4 years ago
• mgeeky / burpContextAwareFuzzer
  BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…
  ☆41Updated 4 years ago
• 1ndianl33t / 1ndi-hacks
  Bug Bounty Tools
  ☆34Updated 4 years ago
• 0xbharath / assets-from-spf
  A Python script to parse net blocks & domain names from SPF record
  ☆84Updated 4 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆62Updated 8 years ago
• ankitk323 / ImgRce
  Image Tragick Exploit Tool Using Burp Collaborator
  ☆36Updated 11 months ago
• err0rr / SSTI
  ☆38Updated 5 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆83Updated 3 years ago
• physics-sec / DetectCrossOriginMessaging
  This Burp extension helps you to find usages of postMessage and recvMessage
  ☆15Updated 5 years ago
• ba0zi / Spring-Boot-Actuator-Exploit
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆22Updated 6 years ago
• spenkk / rapiddns-extractor
  Extract subdomains from rapiddns.io
  ☆23Updated 2 years ago
• ivision-research / burp-highlighter
  ☆22Updated 3 years ago
• emadshanab / Huge_DIR_wordlist
  ☆48Updated 4 years ago
• crawl3r / PortswiggerXSS
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆71Updated 4 years ago
• BBerastegui / bucket-decloaker
  A simple tool to decloak/expose the bucket name behind a domain.
  ☆22Updated 5 years ago
• thelikes / gwdomains
  sub domain wild card filtering tool
  ☆41Updated 5 years ago
• cujanovic / Virtual-host-wordlist
  Virtual host wordlist
  ☆51Updated 4 years ago