Alternatives and similar repositories for scary-strings

Users that are interested in scary-strings are comparing it to the libraries listed below

• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆65Updated last year
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆28Updated last year
• siamthanathack / Passkey-Raider
  Burp Suite extension for testing Passkey systems.
  ☆75Updated 9 months ago
• adelapazborrero / slack_jack
  Hijack a slack bot to phish your way in
  ☆57Updated 6 months ago
• adeptex / whispers
  Identify hardcoded secrets in static structured text (version 2)
  ☆96Updated 11 months ago
• intrudir / burpcollaborator-docker
  A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…
  ☆30Updated last month
• infosecak / DVBE
  Damn Vulnerable Browser Extension (DVBE), previously named as Badly Coded Browser Extension (BCBE), is an open-source vulnerable Chrome E…
  ☆31Updated 10 months ago
• dwisiswant0 / ipfuscator
  A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representati…
  ☆91Updated 2 years ago
• MFMokbel / Crawlector
  Crawlector is a threat hunting framework designed for scanning websites for malicious objects.
  ☆124Updated last month
• jthack / hero
  a hackbot proof-of-concept
  ☆41Updated last year
• nccgroup / ccs
  ☆114Updated 2 years ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆42Updated 2 years ago
• tenable / hidden-services-revealer
  ☆39Updated last year
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• umair9747 / 4oFour
  A tech enumeration toolkit focused on 404 Not found pages.
  ☆25Updated last year
• Macmod / STARS
  A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …
  ☆50Updated 2 years ago
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆55Updated 2 years ago
• nodyhub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆48Updated last year
• yeswehack / myopenvdp
  MyOpenVDP is a free web application to install a vulnerability disclosure policy or a vulnerability disclosure program on your assets. (V…
  ☆31Updated last year
• red-kite-solutions / stalker
  Red Kite, the Extensible Attack Surface Management tool.
  ☆90Updated last week
• nccgroup / cowcloud
  ☆60Updated 2 years ago
• yousseflahouifi / moniorg
  moniorg is a tool that leverages crt.sh website to monitor domains of a target
  ☆47Updated 2 years ago
• dwisiswant0 / ngocok
  ngrok Collaborator Link — yet another Burp Collaborator alternative for free with ngrok.
  ☆113Updated 2 years ago
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆31Updated 4 years ago
• Liodeus / swaggerHole
  A python3 script searching for secret on swaggerhub
  ☆66Updated 3 years ago
• thisis0xczar / FrogPost
  FrogPost: postMessage Security Testing Tool
  ☆106Updated last month
• synacktiv / gh-hijack-runner
  A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
  ☆27Updated last year
• amalmurali47 / swagroutes
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆61Updated 2 years ago
• honoki / bbrf-agents
  A collection of BBRF agents that can be deployed to AWS lambda
  ☆24Updated last year
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆40Updated 3 years ago