Alternatives and similar repositories for XSS-Payloads

Users that are interested in XSS-Payloads are comparing it to the libraries listed below

• ameenmaali / urldedupe
  Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
  ☆367Updated 5 years ago
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆253Updated 11 months ago
• Cyber-Guy1 / Subdomainer
  Automated tool for domains & subdomains gathering
  ☆188Updated last year
• emadshanab / Gf-Patterns-Collection
  ☆155Updated 2 years ago
• 0xDexter0us / Scavenger
  Burp extension to create target specific and tailored wordlist from burp history.
  ☆240Updated 3 years ago
• carlospolop / fuzzhttpbypass
  This tool use fuuzzing to try to bypass unknown authentication methods, who knows...
  ☆248Updated 10 months ago
• bp0lr / gauplus
  ☆294Updated 2 years ago
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆352Updated 3 years ago
• iamthefrogy / nerdbug
  Full Nuclei automation script with logic explanation.
  ☆246Updated 3 years ago
• 0x240x23elu / JSScanner
  Js File Scanner
  ☆168Updated 3 years ago
• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆296Updated 9 months ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆218Updated 2 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆223Updated last year
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆79Updated 5 years ago
• R0X4R / bhedak
  A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.
  ☆105Updated 3 years ago
• dwisiswant0 / gf-secrets
  Secret and/or credential patterns used for gf.
  ☆240Updated 2 years ago
• Akokonunes / Private-Nuclei-Templates
  ☆159Updated 2 years ago
• geeknik / the-nuclei-templates
  Nuclei templates written by us.
  ☆272Updated 3 years ago
• In3tinct / See-SURF
  Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.
  ☆322Updated 2 weeks ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆512Updated last year
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆149Updated 4 years ago
• theinfosecguy / QuickXSS
  Automating XSS using Bash
  ☆355Updated last year
• pdelteil / BugBountyReportTemplates
  List of reporting templates I have used since I started doing BBH.
  ☆306Updated 9 months ago
• 0xElkot / Bug-Bounty-Automation
  ☆113Updated 2 years ago
• daffainfo / match-replace-burp
  Useful "Match and Replace" burpsuite rules
  ☆348Updated last year
• ferreiraklet / airixss
  Finding XSS during recon
  ☆261Updated 2 years ago
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆312Updated 7 months ago
• Proviesec / xss-payload-list
  xss-payload-list
  ☆118Updated 11 months ago
• victoni / Bug-Bounty-Scripts
  The scripts I write to help me on my bug bounty hunting
  ☆121Updated 3 years ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆178Updated 2 years ago