Alternatives and similar repositories for tarnish

Users that are interested in tarnish are comparing it to the libraries listed below

• ReconJSON / ReconJSON
  ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.
  ☆102Updated 6 years ago
• intrigueio / intrigue-ident
  Application and Service Fingerprinting
  ☆133Updated 2 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆138Updated 5 years ago
• PortSwigger / scan-check-builder
  Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.
  ☆71Updated 3 years ago
• vavkamil / dkimsc4n
  Asynchronous wordlist based DKIM scanner
  ☆58Updated 4 years ago
• pwntester / DupeKeyInjector
  DupeKeyInjector
  ☆135Updated 3 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆287Updated 4 months ago
• nccgroup / Decoder-Improved
  Improved decoder for Burp Suite
  ☆137Updated 3 years ago
• luh2 / DetectDynamicJS
  The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…
  ☆68Updated 4 years ago
• irsdl / OutlookLeakTest
  The Outlook HTML Leak Test Project
  ☆41Updated 7 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆66Updated last year
• GrrrDog / ZeroNights-WebVillage-2017
  ☆70Updated 7 years ago
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆259Updated 3 years ago
• glem0 / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆113Updated 6 years ago
• 0xSobky / Regaxor
  A regular expression fuzzer.
  ☆44Updated 7 years ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆146Updated 6 years ago
• opnsec / postMessage-logger
  Simple "postMessage logger" Chrome extension
  ☆96Updated 5 years ago
• nightowl131 / AAPG
  [A]ndroid [A]pplication [P]entest [G]uide
  ☆124Updated 5 years ago
• bonkc / BugBountySubdomains
  Tools to gather subdomains from Bug Bounty programs
  ☆64Updated 7 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆198Updated 4 years ago
• exploitprotocol / app-sec-wiki
  Files for appsecwiki.com
  ☆117Updated 4 years ago
• koto / gitpillage
  Pillage a git repo found in an accessible web root
  ☆61Updated 14 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆76Updated 5 years ago
• cure53 / public-pentesting-reports
  Curated list of public penetration testing reports released by several consulting firms
  ☆48Updated 7 years ago
• aurainfosec / burp-multi-browser-highlighting
  Highlight Burp proxy requests made by different browsers
  ☆30Updated 7 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 4 years ago
• nccgroup / CollaboratorPlusPlus
  ☆148Updated 3 years ago
• mandatoryprogrammer / FlashHTTPRequest
  A very simple bridge for performing Flash HTTP requests with JavaScript
  ☆80Updated 9 years ago
• moloch-- / CSP-Bypass
  A Burp Plugin for Detecting Weaknesses in Content Security Policies
  ☆168Updated 2 years ago
• ollseg / ttt-ext
  Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.
  ☆81Updated 6 years ago