Alternatives and similar repositories for LFI-Fuzzer-Burp-Suite

Users that are interested in LFI-Fuzzer-Burp-Suite are comparing it to the libraries listed below

• p3n73st3r / Ghazi

  View on GitHub
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆107Feb 11, 2019Updated 7 years ago
• gnothiseautonlw / burp-shell-fwd-lfi

  View on GitHub
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆78Sep 11, 2020Updated 5 years ago
• dsecuredcom / vhost-fuzzer

  View on GitHub
  Tool to fuzz for interesting vhost.
  ☆23Jan 8, 2025Updated last year
• aress31 / smbaudit

  View on GitHub
  Perform various SMB-related attacks, particularly useful for testing large Active Directory environments.
  ☆42Oct 15, 2022Updated 3 years ago
• virusvfv / BurpBounty-Profiles

  View on GitHub
  ☆16Oct 24, 2018Updated 7 years ago
• ethicalhackingplayground / crlfmap

  View on GitHub
  CRLFMap is a tool to find HTTP Splitting vulnerabilities
  ☆25Jul 31, 2020Updated 5 years ago
• joefizz / autofindomain

  View on GitHub
  ☆24Jan 26, 2021Updated 5 years ago
• secf00tprint / payloadtester_lfi_rfi

  View on GitHub
  LFI/RFI Payload Tests Project
  ☆36Oct 21, 2019Updated 6 years ago
• ra1nb0rn / avain

  View on GitHub
  A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks
  ☆66Nov 13, 2021Updated 4 years ago
• thegsoinfosec / web-app

  View on GitHub
  Tools and resources for web app hacking. The payloads.txt documents are a must have for your Burpsuite intruder payload armory. They've h…
  ☆28Jun 10, 2019Updated 6 years ago
• InitRoot / BurpSQLTruncSanner

  View on GitHub
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Apr 17, 2020Updated 5 years ago
• xer0times / SQLi-Query-Tampering

  View on GitHub
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆155Aug 21, 2020Updated 5 years ago
• six2dez / resolvers_reconftw

  View on GitHub
  Resolvers updated daily for reconftw
  ☆47Feb 7, 2023Updated 3 years ago
• lazaars / SAP-Pentest

  View on GitHub
  ☆73Nov 5, 2018Updated 7 years ago
• Josue87 / roboxtractor

  View on GitHub
  Extract endpoints marked as disallow in robots files to generate wordlists.
  ☆58Mar 2, 2022Updated 3 years ago
• jas502n / Jboss_JMXInvokerServlet_Deserialization_RCE

  View on GitHub
  Jboss_JMXInvokerServlet_Deserialization_RCE
  ☆21Sep 3, 2019Updated 6 years ago
• InitRoot / fransRecon

  View on GitHub
  Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated…
  ☆31Aug 2, 2019Updated 6 years ago
• SilverPoision / a-full-list-of-wordlists

  View on GitHub
  this contain the burp pack
  ☆208Jan 25, 2017Updated 9 years ago
• noptrix / nullscan

  View on GitHub
  A modular framework designed to chain and automate security tests.
  ☆44Jan 6, 2021Updated 5 years ago
• tls-attacker / TLS-Attacker-BurpExtension

  View on GitHub
  ☆38Jul 3, 2020Updated 5 years ago
• 3vangel1st / kamerka

  View on GitHub
  Build interactive map of cameras from Shodan
  ☆23Jan 17, 2020Updated 6 years ago
• niteshmmgupta / freedan

  View on GitHub
  ☆10Mar 11, 2024Updated last year
• rsherstnev / zshcompletions

  View on GitHub
  This is repo with my custom zsh completion files for pentesting tools, which do not exist in zsh and oh-my-zsh by default
  ☆12Oct 23, 2025Updated 3 months ago
• righettod / virtualhost-payload-generator

  View on GitHub
  BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…
  ☆60Oct 8, 2017Updated 8 years ago
• BitTheByte / BitBlinder

  View on GitHub
  BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
  ☆118Dec 23, 2025Updated last month
• SpiderMate / B-XSSRF

  View on GitHub
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆293Aug 23, 2019Updated 6 years ago
• bp0lr / wurl

  View on GitHub
  A tool to test working urls.
  ☆43Nov 17, 2020Updated 5 years ago
• mrhacker51 / BurpSuiteBypassWAF

  View on GitHub
  ☆25Mar 21, 2020Updated 5 years ago
• aress31 / ness6nmap2xlsx

  View on GitHub
  XLSX parser for nessus and nmap scan results.
  ☆12Nov 22, 2019Updated 6 years ago
• MilindPurswani / takemeon

  View on GitHub
  nxdomain subdomain enumeration
  ☆10Jul 17, 2022Updated 3 years ago
• tomikoski / common-lists

  View on GitHub
  Misc stuff from internet
  ☆12Nov 5, 2025Updated 3 months ago
• PortSwigger / mcp-proxy

  View on GitHub
  SSE to Stdio MCP Proxy Server
  ☆17Jun 9, 2025Updated 8 months ago
• KathanP19 / gaussrf

  View on GitHub
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆174Nov 11, 2020Updated 5 years ago
• RihaMaheshwari / XXE-Injection-Payloads

  View on GitHub
  XXE Injection Payloads
  ☆28Jul 30, 2019Updated 6 years ago
• mzfr / takeover

  View on GitHub
  A tool for testing subdomain takeover possibilities at a mass scale.
  ☆50May 23, 2021Updated 4 years ago
• ZephrFish / BurpFeed

  View on GitHub
  Hacked together script for feeding urls into Burp's Sitemap
  ☆92Dec 7, 2025Updated 2 months ago
• dumorewithcode / purl

  View on GitHub
  ☆38Aug 27, 2022Updated 3 years ago
• Nishantbhagat57 / backup-gen

  View on GitHub
  Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…
  ☆88Jun 23, 2025Updated 7 months ago
• guptabless / unclaim-s3-finder

  View on GitHub
  ☆11Jul 28, 2020Updated 5 years ago