Alternatives and similar repositories for waf-workshop

Users that are interested in waf-workshop are comparing it to the libraries listed below

• shurmajee / postmessage-vulnerability-demo
  HTML source files demonstrating HTML5 postmessage vulnerabilities
  ☆20Updated 5 years ago
• deepak0401 / Front-Page-Exploit
  HTTP requests of FrontPage expolit
  ☆26Updated 12 years ago
• adanalvarez / SimpleAutoBurp
  Python script to launch burp scans automatically
  ☆33Updated 4 years ago
• PortSwigger / ator
  ☆33Updated last year
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆73Updated 3 years ago
• redhuntlabs / BurpSuite-Asset_History
  ☆36Updated 11 months ago
• wfinn / redirex
  tool that generates bypasses for open redirects
  ☆52Updated 3 years ago
• yeswehack / BCheck-Burp-scripts
  Bcheck scripts for Burp
  ☆28Updated last year
• wrvenkat / burp-multistep-csrf-poc
  Burp extension to generate multi-step CSRF POC.
  ☆31Updated 6 years ago
• Static-Flow / BurpSuiteAutoRepeaterNaming
  This extension replaces the default repeater tab name with the URL path of the repeater request.
  ☆22Updated 4 years ago
• egrullon / Wounty
  Wounty is a simple web enumeration script that makes use of other popular tools to automate the early stages of recognition in Bug Bounty…
  ☆14Updated 3 years ago
• cygenta / CVE-2020-3452
  ☆26Updated 3 years ago
• emadshanab / admin-login
  ☆12Updated 4 years ago
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆30Updated 3 years ago
• fyoorer / ffufsee
  Ffuf output browser
  ☆40Updated 2 years ago
• 303sec / log4shell-everywhere
  A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers
  ☆42Updated 4 years ago
• honoki / bbrf-burp-plugin
  A BurpSuite plugin for BBRF
  ☆25Updated last year
• wdahlenburg / CVESearch
  Query various sources for CVE proof-of-concepts
  ☆53Updated 2 years ago
• GoSecure / goinsecure-deserialization
  Accompanying material needed for the workshop
  ☆11Updated 2 years ago
• joefizz / autofindomain
  ☆24Updated 4 years ago
• Leoid / Burp2Slack
  Push notifications to Slack channel or to custom server based on BurpSuite response conditions.
  ☆17Updated 5 years ago
• t0xodile / the-single-packet-shovel
  ☆21Updated 4 months ago
• 1ZRR4H / CVE-2021-26084
  Atlassian Confluence CVE-2021-26084 one-liner mass checker
  ☆30Updated 4 years ago
• nullenc0de / Cognitohunter
  A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…
  ☆21Updated 11 months ago
• adarshshetty18 / fcm_server_key
  Tool to extract & validate google fcm server keys from apks
  ☆29Updated 4 years ago
• Devang-Solanki / recon.cloud
  recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…
  ☆24Updated 2 years ago
• hoodoer / WP-XSS-Admin-Funcs
  JavaScript functions intended to be used as an XSS payload against a WordPress admin account.
  ☆57Updated 5 years ago
• ZephrFish / Lepus
  Subdomain finder
  ☆10Updated 10 months ago
• 10goto20 / seltzer
  A Burp Suite extension for headless, unattended scanning.
  ☆36Updated 5 years ago
• ambalabanov / cswsh-scanner
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Updated 5 years ago