Alternatives and similar repositories for low-hanging

Users that are interested in low-hanging are comparing it to the libraries listed below

• laconicwolf / Dirscover
  A multi-processed, multi-threaded scanner to discover web directories on multiple URLs.
  ☆21Updated 5 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆22Updated 5 years ago
• opsdisk / cloud_metadata_extractor
  Cloud metadata extraction tools and scripts
  ☆34Updated 2 years ago
• nccgroup / clickjacking-poc
  Clickjacking PoC Generator
  ☆35Updated 4 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆40Updated 11 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆72Updated 5 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 7 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆46Updated 6 years ago
• 003random / ICU
  An Extended, Modulair, Host Discovery Framework
  ☆43Updated 6 years ago
• tls-attacker / TLS-Attacker-BurpExtension
  ☆38Updated 5 years ago
• 1N3 / CloudHunter
  Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them
  ☆37Updated 7 years ago
• dariusztytko / progress-burp
  Burp Suite extension to track vulnerability assessment progress
  ☆59Updated 5 years ago
• laconicwolf / cors-scanner
  A multi-threaded scanner that helps identify CORS flaws/misconfigurations
  ☆19Updated 5 years ago
• cybernova / DNSaxfr
  Shell script for testing DNS zone transfer (AXFR query) on domains and subdomains recursively.
  ☆50Updated 4 years ago
• Cillian-Collins / Recon
  The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…
  ☆15Updated 7 years ago
• NetSPI / crossdomainscanner
  Python tool for expired domain discovery in crossdomain.xml files
  ☆23Updated 8 years ago
• random-robbie / metadata-one-liners
  retrive metadata endpoint data with these one liners.
  ☆38Updated 4 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 6 years ago
• RUB-NDS / SAML-XXE-Test
  Simple XXE test suite generated specifically for SAML interfaces
  ☆22Updated 7 years ago
• infosec-au / webappsec-toolkit
  Web Application Security related tools. Includes backdoors, proof of concepts and tricks
  ☆37Updated 10 years ago
• Matir / webborer
  WebBorer is a directory-enumeration tool written in Go.
  ☆44Updated 2 years ago
• joda32 / CertCrunchy
  Just a silly recon tool that uses data from SSL Certificates to find potential host names
  ☆30Updated 2 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 8 years ago
• rohitcoder / SubR3con
  SubR3con is a script written in python. It uses Sublist3r to enumerate all subdomains of a specific target and then it checks for status …
  ☆18Updated 5 years ago
• SecurityRiskAdvisors / Burp-Load-Balancer-Cookie-Scanner
  Burp extension to find and decode BigIP and Netscaler cookies
  ☆15Updated 6 years ago
• nccgroup / wstalker
  WStalker: an easy proxy
  ☆25Updated 5 years ago
• bayotop / sink-logger
  Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.
  ☆49Updated 2 years ago
• Den1al / pymassdns
  A Pythonic wrapper to MassDNS
  ☆24Updated 7 years ago
• EnableSecurity / Webapp-Exploit-Payloads
  a collection of payloads for common webapps
  ☆73Updated 12 years ago