Alternatives and similar repositories for content-discovery-hit-lists

Users that are interested in content-discovery-hit-lists are comparing it to the libraries listed below

• the-bumble / Burp-Scanner-OOB-Checks

  View on GitHub
  This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunter
  ☆20Feb 16, 2017Updated 9 years ago
• scriptjunkie / hoarder

  View on GitHub
  Pack required dlls into a single binary that has no imports and makes direct syscalls on Windows
  ☆28Jul 14, 2017Updated 8 years ago
• SolomonSklash / cookie-decrypter

  View on GitHub
  A Burp Suite Professional extension for decrypting/decoding various types of cookies.
  ☆12Jun 12, 2019Updated 6 years ago
• 0xdevalias / gopherblazer

  View on GitHub
  PoC's and Slides from 'Gophers, whales and.. clouds? Oh my!' BSides Wellington presentation by Glenn 'devalias' Grant
  ☆17Mar 3, 2018Updated 7 years ago
• alexmgr / pybleach

  View on GitHub
  A library to facilitate the exploitation of padding oracle attacks
  ☆15Apr 1, 2015Updated 10 years ago
• hypnosec / evil-repo

  View on GitHub
  "><script>prompt(1)</script>''"><!--<svg>
  ☆18Nov 20, 2015Updated 10 years ago
• SecurityRiskAdvisors / Burp-Load-Balancer-Cookie-Scanner

  View on GitHub
  Burp extension to find and decode BigIP and Netscaler cookies
  ☆15Jul 20, 2018Updated 7 years ago
• floyd-fuh / burp-HttpFuzzer

  View on GitHub
  Burp plugin to do random fuzzing of HTTP requests
  ☆33Jan 31, 2017Updated 9 years ago
• lavalamp- / security-unit-testing

  View on GitHub
  This is a repository containing example code for how you can use unit tests to protect against security regression.
  ☆19Jun 26, 2017Updated 8 years ago
• EdOverflow / curate

  View on GitHub
  A tool for fetching archived URLs (to be rewritten in Go).
  ☆41Jul 19, 2018Updated 7 years ago
• YasserGersy / Enums

  View on GitHub
  Just lists of lists of lists !
  ☆17Oct 13, 2025Updated 4 months ago
• grutz / squirtle

  View on GitHub
  Squirtle the Browser-based NTLM Attack Toolkit
  ☆17Apr 13, 2015Updated 10 years ago
• lavalamp- / smb-check

  View on GitHub
  A simple bash script that uses smbclient to test access to Windows file shares in automated fashion.
  ☆19Jul 9, 2015Updated 10 years ago
• mandatoryprogrammer / lambda-intruder

  View on GitHub
  An example of high-QPS requesting Burp Intruder style on AWS Lambda via self-invocation.
  ☆22Nov 15, 2018Updated 7 years ago
• lorenzog / burpAddCustomHeader

  View on GitHub
  A Burp Suite extension to add a custom header (e.g. JWT)
  ☆20Dec 9, 2021Updated 4 years ago
• vulndb / python-sdk

  View on GitHub
  Python SDK to access the vulnerability database
  ☆22Sep 5, 2019Updated 6 years ago
• aramosf / s3openbuckets

  View on GitHub
  ☆23Feb 18, 2018Updated 7 years ago
• moloch-- / sgn

  View on GitHub
  Shikata ga nai (仕方がない) encoder ported into go with several improvements
  ☆31Jan 28, 2026Updated 2 weeks ago
• swarley7 / padoracle

  View on GitHub
  A framework for exploiting padding oracles in network-based applications
  ☆26Feb 25, 2023Updated 2 years ago
• moloch-- / burp-multiplayer

  View on GitHub
  Burp with Friends
  ☆103Jan 21, 2023Updated 3 years ago
• tosebro / SqlPoC

  View on GitHub
  A burp extension to generate sqlmap PoC from target HTTP request.
  ☆27Jan 8, 2017Updated 9 years ago
• StefanGrimminck / zgrab2-configurations

  View on GitHub
  A repository for possible zgrab2 configurations
  ☆27Dec 3, 2022Updated 3 years ago
• rip1s / CTFHelper

  View on GitHub
  A simple Burp extension for scanning stuffs in CTF
  ☆30Jan 22, 2018Updated 8 years ago
• ac-mercury / mercuryiss-kali

  View on GitHub
  Disposable Kali Linux containers for Mercury ISS / pentesting engagements.
  ☆38Aug 21, 2019Updated 6 years ago
• tomsteele / burpstaticscan

  View on GitHub
  Use burp's JS static code analysis on code from your local system.
  ☆42Dec 22, 2016Updated 9 years ago
• ari5ti / pentest-report-generator

  View on GitHub
  A small utility to generate a word security report by using a knowledge base(XLSX).
  ☆12Nov 25, 2023Updated 2 years ago
• NetSPI / JavaSerialKiller

  View on GitHub
  Burp extension to perform Java Deserialization Attacks
  ☆216Feb 2, 2024Updated 2 years ago
• anniepank / MRTKVolumeSelector

  View on GitHub
  Unity package for cutting the selected area of the mesh for HoloLens.
  ☆10Sep 21, 2020Updated 5 years ago
• adamkramer / reg_export

  View on GitHub
  ☆12Dec 14, 2016Updated 9 years ago
• carnal0wnage / fake_commited_secrets

  View on GitHub
  A repo of fake committed secrets to test tools that find committed secrets ([dont submit for BB :-) ]
  ☆10Mar 22, 2018Updated 7 years ago
• andresriancho / vpc-vpn-pivot

  View on GitHub
  Pivot into private VPC networks using a VPN connection
  ☆43Oct 8, 2019Updated 6 years ago
• alex91ar / Diamorphine

  View on GitHub
  LKM rootkit for Linux Kernels 2.6.x/3.x/4.x
  ☆39May 23, 2019Updated 6 years ago
• luckyapple1028 / demo-genetlink

  View on GitHub
  ☆12May 1, 2016Updated 9 years ago
• syntience-inc / um1

  View on GitHub
  UM1 test programs and sample code
  ☆11Jul 25, 2022Updated 3 years ago
• KhronosGroupArchives / WebCL-conformance

  View on GitHub
  WebCL conformance tests
  ☆20Feb 9, 2018Updated 8 years ago
• badboycxcc / POC

  View on GitHub
  Nuclei POC 模板
  ☆10Feb 17, 2023Updated 2 years ago
• PortSwigger / same-origin-method-execution

  View on GitHub
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆15Feb 13, 2017Updated 9 years ago
• kondukto-io / semgrep-rules

  View on GitHub
  Custom semgrep rules registry
  ☆14Aug 23, 2022Updated 3 years ago
• iAbdullahMughal / espionage

  View on GitHub
  A basic python based tool for domain ℹ️ information gathering. I am working 💻 on collecting information related to domain whois, history…
  ☆12Jan 11, 2026Updated last month