The Serverless Blind XSS App
☆339Mar 28, 2026Updated 2 weeks ago
Alternatives and similar repositories for xless
Users that are interested in xless are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆301Feb 12, 2023Updated 3 years ago
- A tool to find sensitive keys and passwords in Travis logs☆139Jun 27, 2021Updated 4 years ago
- A blind XSS detection and XSS data capture framework☆175Dec 6, 2025Updated 4 months ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,794Apr 26, 2024Updated last year
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,260Jan 8, 2026Updated 3 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Dump all available paths and/or endpoints on WADL file.☆98Nov 24, 2025Updated 4 months ago
- Scan secrets from Continuous Integration Build Logs☆53Oct 14, 2019Updated 6 years ago
- A highly configurable Framework for easy automated web scanning☆382Jul 13, 2020Updated 5 years ago
- ☆809Jul 28, 2024Updated last year
- Second-order subdomain takeover scanner☆402Mar 29, 2026Updated 2 weeks ago
- Repo of useful scripts☆104Jun 30, 2020Updated 5 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆93Aug 27, 2019Updated 6 years ago
- Fetches javascript file from a list of URLS or subdomains.☆839Jul 22, 2025Updated 8 months ago
- Secret and/or credential patterns used for gf.☆243Feb 10, 2023Updated 3 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,153Aug 14, 2024Updated last year
- ☆437Jun 1, 2021Updated 4 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,418Sep 13, 2024Updated last year
- Bugbounty scope tool☆332Mar 5, 2025Updated last year
- Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…☆99Dec 30, 2019Updated 6 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,030Feb 5, 2021Updated 5 years ago
- A Firefox Web Extension to improve the discovery of DOM XSS.☆290Nov 13, 2024Updated last year
- Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools☆288Jul 13, 2024Updated last year
- ☆31Apr 6, 2021Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Automatic tool for DNS rebinding-based SSRF attacks☆305Aug 21, 2020Updated 5 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆74Jan 4, 2021Updated 5 years ago
- Making Favicon.ico based Recon Great again !☆1,272Aug 29, 2023Updated 2 years ago
- DNS Takeover tool written in Go☆2,046Mar 16, 2026Updated last month
- Extract relative urls from a heap snapshot☆87May 30, 2021Updated 4 years ago
- Burp Suite Extension to monitor new scope☆200Mar 31, 2021Updated 5 years ago
- A better version of my xssfinder tool - scans for different types of xss on a list of urls.☆187Aug 3, 2019Updated 6 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆136Sep 25, 2019Updated 6 years ago
- Security Testing Scripts for JWT☆328Mar 13, 2026Updated last month
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- XSS payloads designed to turn alert(1) into P1☆1,394Sep 12, 2023Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆640Jul 7, 2025Updated 9 months ago
- Toolset for detecting reflected xss in websites☆116Oct 7, 2018Updated 7 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆338Aug 23, 2019Updated 6 years ago
- A fuzzer for detecting open redirect vulnerabilities☆784Jul 1, 2024Updated last year
- secretz, minimizing the large attack surface of Travis CI☆324May 30, 2022Updated 3 years ago
- A simple SSRF-testing sheriff written in Go☆337Oct 31, 2024Updated last year