Alternatives and similar repositories for tarnish:

Users that are interested in tarnish are comparing it to the libraries listed below

• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆138Updated 5 years ago
• exploitprotocol / app-sec-wiki
  Files for appsecwiki.com
  ☆117Updated 4 years ago
• ReconJSON / ReconJSON
  ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.
  ☆102Updated 6 years ago
• nightowl131 / AAPG
  [A]ndroid [A]pplication [P]entest [G]uide
  ☆124Updated 5 years ago
• PortSwigger / scan-check-builder
  Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.
  ☆71Updated 3 years ago
• intrigueio / intrigue-ident
  Application and Service Fingerprinting
  ☆133Updated 2 years ago
• pownjs / cdb
  Automate common Chrome Debug Protocol tasks to help debug web applications from the command-line and actively monitor and intercept HTTP …
  ☆73Updated 3 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆89Updated 7 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆35Updated 5 years ago
• pwntester / DupeKeyInjector
  DupeKeyInjector
  ☆135Updated 3 years ago
• br3akp0int / GQLParser
  A repository for GraphQL Extension for Burp Suite
  ☆57Updated 6 years ago
• pinnace / burp-jwt-fuzzhelper-extension
  JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.
  ☆99Updated 5 years ago
• koto / gitpillage
  Pillage a git repo found in an accessible web root
  ☆61Updated 13 years ago
• ettic-team / EndpointFinder
  ☆52Updated 11 months ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆145Updated 6 years ago
• 0ang3el / EasyCSRF
  ☆162Updated 7 years ago
• mandatoryprogrammer / FlashHTTPRequest
  A very simple bridge for performing Flash HTTP requests with JavaScript
  ☆79Updated 9 years ago
• roglew / guppy-proxy
  The Guppy Proxy (GUI Pappy)
  ☆143Updated 5 years ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆70Updated 7 years ago
• luh2 / DetectDynamicJS
  The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…
  ☆68Updated 4 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆66Updated last year
• nccgroup / Decoder-Improved
  Improved decoder for Burp Suite
  ☆138Updated 3 years ago
• bonkc / BugBountySubdomains
  Tools to gather subdomains from Bug Bounty programs
  ☆64Updated 7 years ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆139Updated 4 years ago
• gursev / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆44Updated 11 years ago
• hvqzao / burp-flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆48Updated 4 years ago
• securityMB / burp-exceptions
  Simple trick to increase readability of exceptions raised by Burp extensions written in Python
  ☆43Updated 8 years ago
• amolnaik4 / bodhi
  Bodhi - Client-side Vulnerability Playground
  ☆119Updated 3 years ago
• EdOverflow / smith
  Simple wrapper for meg that sieves through meg's output for you.
  ☆60Updated 5 years ago
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 4 years ago