Alternatives and similar repositories for wordlists:

Users that are interested in wordlists are comparing it to the libraries listed below

• codewatchorg / Burp-IndicatorsOfVulnerability
  Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack
  ☆41Updated 2 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• hahwul / ras-fuzzer
  RAS(RAndom Subdomain) Fuzzer
  ☆43Updated 5 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆44Updated 2 years ago
• netscylla / JWT_Hacking
  Collection of scripts that aid in penetration testing of JSON Web Tokens
  ☆58Updated 6 years ago
• TROUBLE-1 / codeza
  This tool will scan all the URL's in the file and will provide Content-Length, Status-Code, Server and more.
  ☆36Updated 3 years ago
• mgeeky / burpContextAwareFuzzer
  BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…
  ☆39Updated 4 years ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆57Updated 5 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆41Updated 4 years ago
• rhelmke / urlenc
  URL-encode data streams via commandline
  ☆14Updated 5 years ago
• ankitk323 / ImgRce
  Image Tragick Exploit Tool Using Burp Collaborator
  ☆35Updated 10 months ago
• B3nac / bXSSRequest
  Literally spray blind xss payloads everywhere.
  ☆26Updated 3 years ago
• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆55Updated 6 years ago
• vp777 / metahttp
  A bash script that automates the scanning of a target network for HTTP resources through XXE
  ☆38Updated 4 years ago
• Emoe / OpenBugBounty-Scrapper
  This script scrapes the list of open Bug Bounty Programs from openbugbounty.org
  ☆27Updated 3 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆62Updated 8 years ago
• SomeKirill / wordlist_generator
  Unique wordlist generator of unique wordlists.
  ☆43Updated last year
• ba0zi / Spring-Boot-Actuator-Exploit
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆22Updated 6 years ago
• si9int / ScreenShooter
  Convert your masscan/subdomain-scan results (80,443,8080) into screenshots for better analysis
  ☆36Updated 6 years ago
• DFC302 / statusparser
  Retrive the status codes from a list of URLs
  ☆33Updated 4 years ago
• profmoriarity / wfuxx
  web-based-fuzzer
  ☆32Updated 4 years ago
• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆39Updated last year
• irsdl / BurpTabEssentials
  This changes the style of Burp Suite's Repeater tabs to help the testers
  ☆29Updated 5 years ago
• righettod / virtualhost-payload-generator
  BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…
  ☆60Updated 7 years ago
• rudSarkar / crlf-injector
  A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…
  ☆46Updated 2 years ago
• ettic-team / EndpointFinder-Burp
  ☆32Updated 5 years ago
• fadyosman / SAMLExtractor
  A tool that can take a URL or list of URL and prints back SAML consume URL.
  ☆36Updated 6 years ago
• Static-Flow / BurpSuiteTeamServer
  This is the Go Server that relays all HTTP requests and responses between clients.
  ☆27Updated last year
• M507 / AutomatedHunter
  Google Chrome Extension automates testing fundamental Web Problems via Chrome
  ☆21Updated 4 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆60Updated 3 years ago