Alternatives and similar repositories for WAF-Payload-Collection

Users that are interested in WAF-Payload-Collection are comparing it to the libraries listed below

• g0ldencybersec / EasyEASM
  Zero-dollar attack surface management tool
  ☆310Updated last year
• brinhosa / apidetector
  APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …
  ☆356Updated 9 months ago
• projectdiscovery / nuclei-templates-ai
  Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…
  ☆112Updated 3 months ago
• fastly / wafefficacy
  Measures the effectiveness of your Web Application Firewall (WAF)
  ☆82Updated 6 months ago
• JaimePolop / RExpository
  ☆153Updated last week
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆280Updated 3 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆310Updated last year
• PortSwigger / auth-analyzer
  ☆110Updated last year
• harekrishnarai / Damn-vulnerable-sca
  Damn Vulnerable SCA Application
  ☆43Updated last week
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆164Updated last year
• projectdiscovery / openrisk
  openrisk is a tool that generates a risk score based on the results of a Nuclei scan.
  ☆179Updated last week
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Updated 2 years ago
• OWASP / www-project-asvs-security-evaluation-templates-with-nuclei
  OWASP ASVS Security Evaluation Templates with Nuclei
  ☆42Updated last month
• projectdiscovery / nuclei-templates-labs
  Vulnerable environments paired with ready-to-use Nuclei templates for security testing and learning! 🚀
  ☆125Updated 5 months ago
• cyprosecurity / API-SecurityEmpire
  API Security Project aims to present unique attack & defense methods in API Security field
  ☆289Updated 3 years ago
• trinitor / CVE-Vulnerability-Information-Downloader
  Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…
  ☆142Updated 2 years ago
• sf197 / nuclei_gpt
  Chat automates Nuclei template generation
  ☆108Updated 2 years ago
• hadriansecurity / subwiz
  A lightweight GPT model, trained to discover subdomains.
  ☆335Updated 2 weeks ago
• PortSwigger / oauth-scan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆192Updated last year
• The-Login / SMTP-Smuggling-Tools
  Tools for finding SMTP smuggling vulnerabilities.
  ☆143Updated last year
• trickest / find-gh-poc
  Find CVE PoCs on GitHub
  ☆156Updated 5 months ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆236Updated last week
• DevSecOpsDocs / nuclearpond
  Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.
  ☆186Updated 2 years ago
• Orange-Cyberdefense / grepmarx
  A source code static analysis platform for AppSec enthusiasts.
  ☆265Updated 3 weeks ago
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆164Updated 2 months ago
• JMousqueton / github-cve-monitor
  Github action for monitoring CVE
  ☆43Updated this week
• hakaioffsec / navgix
  navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities
  ☆73Updated 2 years ago
• Brum3ns / firefly
  Black box fuzzer for web applications
  ☆436Updated 5 months ago
• securisec / cliam
  Cloud agnostic IAM permissions enumerator
  ☆161Updated 8 months ago
• Bandit-HaxUnit / haxunit
  ☆329Updated 5 months ago