Alternatives and similar repositories for WAF-Payload-Collection

Users that are interested in WAF-Payload-Collection are comparing it to the libraries listed below

• fastly / wafefficacy
  Measures the effectiveness of your Web Application Firewall (WAF)
  ☆81Updated 3 weeks ago
• brinhosa / apidetector
  APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …
  ☆323Updated 3 months ago
• ntoskernel / deepsecrets
  Secrets scanner that understands code
  ☆148Updated 4 months ago
• projectdiscovery / openrisk
  openrisk is a tool that generates a risk score based on the results of a Nuclei scan.
  ☆172Updated 5 months ago
• projectdiscovery / nuclei-templates-labs
  Vulnerable environments paired with ready-to-use Nuclei templates for security testing and learning! 🚀
  ☆101Updated last week
• g0ldencybersec / EasyEASM
  Zero-dollar attack surface management tool
  ☆295Updated last year
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆162Updated 8 months ago
• sf197 / nuclei_gpt
  Chat automates Nuclei template generation
  ☆110Updated last year
• PortSwigger / auth-analyzer
  ☆94Updated last year
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆302Updated last year
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆270Updated 4 months ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆161Updated 7 months ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆117Updated last year
• harekrishnarai / Damn-vulnerable-sca
  Damn Vulnerable SCA Application
  ☆39Updated this week
• cyprosecurity / API-SecurityEmpire
  API Security Project aims to present unique attack & defense methods in API Security field
  ☆285Updated 3 years ago
• trinitor / CVE-Vulnerability-Information-Downloader
  Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…
  ☆144Updated 2 years ago
• PortSwigger / oauth-scan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆190Updated 7 months ago
• The-Login / SMTP-Smuggling-Tools
  Tools for finding SMTP smuggling vulnerabilities.
  ☆128Updated last year
• DevSecOpsDocs / nuclearpond
  Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.
  ☆182Updated last year
• ustayready / cloudgpt
  Vulnerability scanner for AWS customer managed policies using ChatGPT
  ☆166Updated 2 years ago
• The-Login / DNS-Analysis-Server
  Tools to assess DNS security.
  ☆152Updated last year
• projectdiscovery / nuclei-templates-ai
  Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…
  ☆89Updated last month
• securisec / cliam
  Cloud agnostic IAM permissions enumerator
  ☆150Updated 3 months ago
• AbstractEngine / pentest-muse-cli
  ☆235Updated last year
• OWASP / www-project-asvs-security-evaluation-templates-with-nuclei
  OWASP ASVS Security Evaluation Templates with Nuclei
  ☆36Updated last month
• Aqua-Nautilus / CVE-Half-Day-Watcher
  ☆294Updated last week
• FA-PengFei / NGWAF
  First iteration of ML based Feedback WAF
  ☆59Updated last year
• trickest / find-gh-poc
  Find CVE PoCs on GitHub
  ☆147Updated last year
• pentesterland / Log4Shell
  ☆69Updated 3 years ago
• attacksurge / awesome-attack-surface-monitoring
  Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.
  ☆420Updated 9 months ago