Alternatives and similar repositories for payload-for-security-testing

Users that are interested in payload-for-security-testing are comparing it to the libraries listed below

• yasinS / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆37Updated 8 years ago
• TROUBLE-1 / codeza
  This tool will scan all the URL's in the file and will provide Content-Length, Status-Code, Server and more.
  ☆36Updated 4 years ago
• melbadry9 / ScanApi
  Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.
  ☆40Updated 2 months ago
• gwen001 / BBstats
  Bug Bounty statistics tool.
  ☆33Updated 3 years ago
• r00tgate / bugbounty101
  An entry level resource to learning bug bounty.
  ☆28Updated 7 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆62Updated 6 years ago
• Regala / burp-subdomains
  Burp Suite extension to easily export sub domains
  ☆44Updated 6 years ago
• Cleveridge / cleveridge-subdomain-scanner
  The Cleveridge Subdomain Scanner finds subdomains of a given domain.
  ☆36Updated 5 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆135Updated 6 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆102Updated last year
• plenumlab / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆39Updated 6 years ago
• shauryasharma-05 / The-Bounty-Dorks
  Now use your favorite Google Dorks techniques to find vulnerabilities and earn Bounties.
  ☆31Updated 5 years ago
• rojan-rijal / LeakFinder
  https://sites.google.com/securifyinc.com/secblogs/finding-leaked-sensitive-data
  ☆17Updated 7 years ago
• DFC302 / subseeker
  A sub-domain enumeration tool
  ☆20Updated 5 years ago
• BitTheByte / Domainker
  BugBounty Tool
  ☆40Updated 6 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 5 years ago
• random-robbie / open-redirect
  Open Redirect Finder.
  ☆52Updated 2 months ago
• lc / otxurls
  Fetch known urls from AlienVault's Open Threat Exchange for given hosts
  ☆63Updated 6 years ago
• random-robbie / bugbountydork
  Bug Bounty Dork
  ☆73Updated 3 years ago
• samhaxr / TakeOver-v1
  Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…
  ☆101Updated 2 years ago
• random-robbie / mass-s3-bucket-tester
  This tests a list of s3 buckets to see if they have dir listings enabled or if they are uploadable
  ☆55Updated last month
• unstabl3 / recce
  Domain availbility checker
  ☆39Updated 4 years ago
• agrawalsmart7 / autoRecon
  This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.
  ☆77Updated 6 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆111Updated 9 years ago
• lc / hacks
  Repo of useful scripts
  ☆105Updated 5 years ago
• Quitten / XSSor
  XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…
  ☆62Updated 4 years ago
• incogbyte / jsearch
  ☆31Updated 4 years ago
• gwen001 / myrecon.py
  My recon script
  ☆50Updated 6 years ago
• cujanovic / Virtual-host-wordlist
  Virtual host wordlist
  ☆51Updated 5 years ago
• crawl3r / PortswiggerXSS
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆74Updated 5 years ago