Alternatives and similar repositories for security

Users that are interested in security are comparing it to the libraries listed below

• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆57Updated 6 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆92Updated 6 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆65Updated 4 years ago
• crawl3r / PortswiggerXSS
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆74Updated 4 years ago
• pelaohxc / postMessageFinder
  ☆36Updated 5 years ago
• profmoriarity / wfuxx
  web-based-fuzzer
  ☆32Updated 5 years ago
• caffeinedoom / Subvenkon
  Subvenkon is a subdomain enumerator from Venkon
  ☆23Updated 5 years ago
• ettic-team / EndpointFinder-Burp
  ☆32Updated 6 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆81Updated 3 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆63Updated 3 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆40Updated 5 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• ivision-research / burp-highlighter
  ☆22Updated 3 years ago
• antichown / vpn-ssl-pulse
  Pulse SSL VPN Arbitrary File Read burp extension
  ☆24Updated 6 years ago
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated 3 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆46Updated 2 years ago
• Cyb3rMehul / venom
  Auto Recon Bash Script
  ☆31Updated last year
• cqsd / daily-commonspeak2
  commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …
  ☆40Updated 4 years ago
• choirurrizal / paraminer
  finds hidden parameters
  ☆23Updated 2 years ago
• JesseClarkND / abnormalizer
  unicode abnormalizer to takes a unicode string and abnormalizes it by character replacment
  ☆26Updated 5 years ago
• ba0zi / Spring-Boot-Actuator-Exploit
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆23Updated 6 years ago
• Rhynorater / reports
  ☆60Updated last year
• Cgboal / exclude-cdn
  Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin
  ☆45Updated 2 years ago
• InitRoot / fransRecon
  Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated…
  ☆31Updated 6 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆87Updated 4 years ago
• xxux11 / http-methods-discloser
  ☆44Updated 4 years ago
• ankitk323 / ImgRce
  Image Tragick Exploit Tool Using Burp Collaborator
  ☆35Updated last year
• ameenmaali / endpointdiff
  Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.
  ☆41Updated 6 years ago
• XalfiE / Oracle-EBS-Security-Audit
  Wordlist to get files/ folders listed by the app that may expose passwords, sensitive file or folders
  ☆22Updated 5 years ago
• yashrs / safecopy
  Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…
  ☆17Updated 5 years ago