Alternatives and similar repositories for scary-strings:

Users that are interested in scary-strings are comparing it to the libraries listed below

• YashGoti / analyzeJS
  A tools for JavaScript Recon
  ☆21Updated 4 years ago
• aufzayed / digit
  Extract endpoints from specific Git repository for fuzzing
  ☆22Updated 4 years ago
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆28Updated 2 years ago
• adarshshetty18 / fcm_server_key
  Tool to extract & validate google fcm server keys from apks
  ☆28Updated 4 years ago
• hakluke / hakcsp
  Return domains in CSP headers in http response
  ☆15Updated 3 years ago
• Static-Flow / BurpSuiteAutoRepeaterNaming
  This extension replaces the default repeater tab name with the URL path of the repeater request.
  ☆22Updated 3 years ago
• tehryanx / ssslide
  View screenshots as a slideshow over http
  ☆15Updated 4 years ago
• geeknik / nuclei-template-generator
  A simple tool which makes creating nuclei templates even easier.
  ☆36Updated 7 months ago
• wrvenkat / burp-multistep-csrf-poc
  Burp extension to generate multi-step CSRF POC.
  ☆29Updated 5 years ago
• thelikes / fuzznav
  parse ffuf & map endpoints to wordlists
  ☆20Updated 3 years ago
• hahwul / hbxss
  Security test tool for Blind XSS
  ☆26Updated 4 years ago
• pelaohxc / postMessageFinder
  ☆36Updated 4 years ago
• ameenmaali / endpointdiff
  Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.
  ☆41Updated 5 years ago
• codewatchorg / Burp-IndicatorsOfVulnerability
  Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack
  ☆41Updated 2 years ago
• KarimPwnz / waybacked
  Get URLs from the Wayback Machine. Able to handle large outputs.
  ☆22Updated last year
• jub0bs / bnew
  ☆9Updated 3 years ago
• b0n1t0 / gSAST
  gSAST - Grep Static Analysis Security Tool
  ☆10Updated 10 months ago
• ihebski / db
  Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]
  ☆28Updated 4 years ago
• lwierzbicki / RegexFinder
  RegexFinder - Burp Suite extension to passively scan responses for occurrence of regular expression patterns.
  ☆22Updated 3 years ago
• BitTheByte / WayRobots
  Tool to find stored robots.txt files from the past
  ☆18Updated last year
• hahwul / action-dalfox
  XSS scanning with Dalfox on Github-action
  ☆23Updated last year
• honoki / bbrf-burp-plugin
  A BurpSuite plugin for BBRF
  ☆24Updated 3 months ago
• allyomalley / s3Takeover
  Automate the process of an S3 bucket subdomain takeover via dangling CNAME record
  ☆25Updated 9 months ago
• fyoorer / ffufsee
  Ffuf output browser
  ☆39Updated last year
• trickest / packages
  Automated compromise detection of the world's most popular packages
  ☆15Updated last year
• cqsd / daily-commonspeak2
  commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …
  ☆40Updated 3 years ago
• defparam / h1data
  ☆23Updated 2 years ago
• hahwul / ws-smuggler
  WebSocket Connection Smuggler
  ☆44Updated 2 years ago
• 1ZRR4H / CVE-2021-26084
  Atlassian Confluence CVE-2021-26084 one-liner mass checker
  ☆30Updated 3 years ago
• gwen001 / favicon-hashtrick
  Python script implementing the favicon hash trick to find subdomains.
  ☆28Updated last year