Alternatives and similar repositories for WAF-Payload-Collection

Users that are interested in WAF-Payload-Collection are comparing it to the libraries listed below

• g0ldencybersec / EasyEASM
  Zero-dollar attack surface management tool
  ☆310Updated last year
• brinhosa / apidetector
  APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …
  ☆355Updated 8 months ago
• cyprosecurity / API-SecurityEmpire
  API Security Project aims to present unique attack & defense methods in API Security field
  ☆289Updated 3 years ago
• hadriansecurity / subwiz
  A lightweight GPT model, trained to discover subdomains.
  ☆327Updated 2 weeks ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆163Updated last year
• Orange-Cyberdefense / grepmarx
  A source code static analysis platform for AppSec enthusiasts.
  ☆264Updated last week
• fastly / wafefficacy
  Measures the effectiveness of your Web Application Firewall (WAF)
  ☆82Updated 5 months ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Updated 2 years ago
• projectdiscovery / nuclei-templates-ai
  Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…
  ☆109Updated 2 months ago
• projectdiscovery / nuclei-templates-labs
  Vulnerable environments paired with ready-to-use Nuclei templates for security testing and learning! 🚀
  ☆126Updated 4 months ago
• JaimePolop / RExpository
  ☆153Updated last year
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆280Updated 3 months ago
• projectdiscovery / openrisk
  openrisk is a tool that generates a risk score based on the results of a Nuclei scan.
  ☆180Updated this week
• PortSwigger / auth-analyzer
  ☆109Updated last year
• PortSwigger / oauth-scan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆192Updated last year
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆163Updated last month
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆310Updated last year
• DevSecOpsDocs / nuclearpond
  Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.
  ☆186Updated last year
• The-Login / SMTP-Smuggling-Tools
  Tools for finding SMTP smuggling vulnerabilities.
  ☆143Updated last year
• mobb-dev / bugsy
  ☆61Updated this week
• nxenon / grpc-pentest-suite
  gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications (Official BApp Extension Available)
  ☆240Updated last month
• trickest / find-gh-poc
  Find CVE PoCs on GitHub
  ☆156Updated 4 months ago
• harekrishnarai / Damn-vulnerable-sca
  Damn Vulnerable SCA Application
  ☆43Updated last month
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆235Updated 2 months ago
• sf197 / nuclei_gpt
  Chat automates Nuclei template generation
  ☆108Updated 2 years ago
• projectdiscovery / nuclei-docs
  Nuclei documentation
  ☆85Updated 2 years ago
• trinitor / CVE-Vulnerability-Information-Downloader
  Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…
  ☆142Updated 2 years ago
• cyllective / oauth-labs
  oauth-labs: an intentionally vulnerable set of OAuth 2.0 labs for security training and learning
  ☆73Updated last year
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆174Updated last year
• Brum3ns / firefly
  Black box fuzzer for web applications
  ☆434Updated 4 months ago