Alternatives and similar repositories for xss-detective

Users that are interested in xss-detective are comparing it to the libraries listed below

• tehmoon / http-fuzzer

  View on GitHub
  ☆12Apr 21, 2020Updated 5 years ago
• 6h4ack / IDOR-Scanner

  View on GitHub
  IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …
  ☆43Feb 24, 2025Updated 11 months ago
• thecybersandeep / mobapp-storage-inspector

  View on GitHub
  A tool for inspecting and analyzing mobile application storage files.
  ☆49May 15, 2025Updated 9 months ago
• Senanfurkan / Chaos-Recon

  View on GitHub
  This little script for gathering chaos.projectdiscovery.io recon data in an organized way and finding the daily differences on it
  ☆18Aug 9, 2020Updated 5 years ago
• lorenzog / burpAddCustomHeader

  View on GitHub
  A Burp Suite extension to add a custom header (e.g. JWT)
  ☆20Dec 9, 2021Updated 4 years ago
• KaanBicaklar / nuclei-MonaCodeScanner

  View on GitHub
  Nuclei templates for source code analysis. Detects hardcoded secrets, config leaks, debug endpoints. Also helps identify OWASP Top 10 iss…
  ☆82Jun 11, 2025Updated 8 months ago
• bhavukjain1 / frida_helper

  View on GitHub
  ☆22Apr 12, 2023Updated 2 years ago
• twelvesec / JDSer-DComp

  View on GitHub
  A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.
  ☆24Mar 1, 2019Updated 6 years ago
• swgee / BurpMCP

  View on GitHub
  Burp Suite Extension with MCP Server to enhance manual application security testing
  ☆33Jan 21, 2026Updated 3 weeks ago
• irsdl / updated-SWFIntruder

  View on GitHub
  Updated version of SWFIntruder
  ☆27Aug 16, 2016Updated 9 years ago
• sechacking / DOMXSSHilight

  View on GitHub
  Burp Extension in Python hilighting DOM Sinks and Hosts using DOM XSS Wiki regex
  ☆24Aug 28, 2013Updated 12 years ago
• LimberDuck / nessus-cheat-sheet

  View on GitHub
  Nessus Cheat Sheet in HTML, PDF, PNG, ADOC
  ☆12Apr 10, 2022Updated 3 years ago
• BitTheByte / Orkestra

  View on GitHub
  Web-based Android debugger with inspection capabilities using Frida and Jadx as a backbone
  ☆35Jun 4, 2023Updated 2 years ago
• crawl3r / PortswiggerXSS

  View on GitHub
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆74Jan 4, 2021Updated 5 years ago
• 0xKayala / BugBountyTools

  View on GitHub
  A-to-Z Bug Bounty Hunting Tools
  ☆86Mar 26, 2025Updated 10 months ago
• s4nsec / flutter-ssl-pinning-bypass

  View on GitHub
  A quick and dirty script to bypass SSL pinning of Flutter applications
  ☆41Jan 8, 2026Updated last month
• ihebski / hacks

  View on GitHub
  Personnel scripts,projects notes,hacks,random thoughts,mindmap etc....
  ☆35Feb 14, 2025Updated last year
• jhaddix / megplus

  View on GitHub
  Automated reconnaissance wrapper — TomNomNom's meg on steroids.
  ☆32Jul 1, 2018Updated 7 years ago
• emadshanab / subs_all

  View on GitHub
  Subdomain Enumeration Wordlist. 8956437 unique words. Updated.
  ☆75May 23, 2020Updated 5 years ago
• paypal / paypal-identity-components

  View on GitHub
  Identity components for PayPal SDK
  ☆11Nov 23, 2023Updated 2 years ago
• poliva / WifiStaticArp

  View on GitHub
  Android app to set an static ARP entry on the gateway's MAC address when you connect to a WIFI network
  ☆11Nov 23, 2012Updated 13 years ago
• ari5ti / pentest-report-generator

  View on GitHub
  A small utility to generate a word security report by using a knowledge base(XLSX).
  ☆12Nov 25, 2023Updated 2 years ago
• itspedruu / walk-and-listen

  View on GitHub
  Walk around your favourite cities while listening to local radios. Inspired by Drive & Listen.
  ☆10Jul 11, 2020Updated 5 years ago
• Anon-Exploiter / infosecinstitute-dl

  View on GitHub
  A small and dirty python3 based script to download courses from Infosec Institute.
  ☆12Oct 6, 2021Updated 4 years ago
• hy0jer / NoAuthScan

  View on GitHub
  一款支持检测web应用程序未授权访问缺陷的burp suite插件，可自定义配置检测字段以及返回包json数据分析
  ☆12Apr 22, 2024Updated last year
• psmet / BIGip-cookie-decoder

  View on GitHub
  A script to easily decode the Big IP cookies
  ☆43Mar 16, 2017Updated 8 years ago
• antonpernisch / bruteproxy.py

  View on GitHub
  BruteProxy.py framework for brute-forcing via HTTP/HTTPS requests with looping proxies.
  ☆12Jan 12, 2026Updated last month
• InesMartins31 / iot-cves

  View on GitHub
  IoT CVEs as abnormal events to evaluate a real-time host-based IDS. https://doi.org/10.1016/j.future.2022.03.001
  ☆12Mar 16, 2022Updated 3 years ago
• cry-college / Cry.College

  View on GitHub
  Template for the CryCollege library.
  ☆12Jan 6, 2024Updated 2 years ago
• cloudstreet-dev / Python-for-Those-Who-Cannot-Even

  View on GitHub
  The Python book for developers who miss curly braces. Learn real Python while complaining about whitespace. 15 chapters of education, com…
  ☆15Aug 21, 2025Updated 5 months ago
• kobs0N / iOS-Penetration-Test-Tools

  View on GitHub
  ☆11Aug 25, 2018Updated 7 years ago
• SpacehuhnTech / wiki

  View on GitHub
  Spacehuhn Wiki Source
  ☆13Apr 27, 2023Updated 2 years ago
• se1zer / FastjsonScan

  View on GitHub
  FastjsonScan，支持版本识别、出网检测、AutoType检测、依赖检测，poc验证等功能
  ☆13Jun 17, 2025Updated 7 months ago
• LadybirdBrowser / libjs-website

  View on GitHub
  ☆16Nov 28, 2024Updated last year
• sunny0day / burp-auto-drop

  View on GitHub
  Burp extension to automatically drop requests that match a certain regex.
  ☆10Mar 10, 2023Updated 2 years ago
• Err0r-ICA / Pentest-Tips

  View on GitHub
  ☆15Dec 3, 2020Updated 5 years ago
• lucsemassa / ad_share_enum

  View on GitHub
  Active Directory share enumeration tool
  ☆12Apr 28, 2025Updated 9 months ago
• 0xCCF4 / ExpKit

  View on GitHub
  A framework and build automation tool to process exploits/payloads to evade antivirus and endpoint detection response products using reus…
  ☆11Jan 16, 2024Updated 2 years ago
• ShubhamDubeyy / WS-Strike

  View on GitHub
  WebSocket Penetration Testing Toolkit for Burp Suite
  ☆24Updated this week