Alternatives and similar repositories for liffy

Users that are interested in liffy are comparing it to the libraries listed below

• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,248Updated 9 months ago
• ksharinarayanan / SSRFire
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆965Updated 3 years ago
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆777Updated last year
• devanshbatham / FavFreak
  Making Favicon.ico based Recon Great again !
  ☆1,242Updated 2 years ago
• r0075h3ll / Oralyzer
  Open Redirection Analyzer
  ☆802Updated 2 years ago
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆570Updated 2 years ago
• chrislockard / api_wordlist
  A wordlist of API names for web application assessments
  ☆854Updated 5 months ago
• payloadbox / rfi-lfi-payload-list
  🎯 RFI/LFI Payload List
  ☆629Updated last year
• yeswehack / PwnFox
  PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.
  ☆1,236Updated last year
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆742Updated 2 years ago
• kurobeats / fimap
  fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…
  ☆569Updated 3 years ago
• hakluke / weaponised-XSS-payloads
  XSS payloads designed to turn alert(1) into P1
  ☆1,379Updated 2 years ago
• chvancooten / BugBountyScanner
  A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
  ☆914Updated 7 months ago
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆814Updated 4 months ago
• payloadbox / open-redirect-payload-list
  🎯 Open Redirect Payload List
  ☆629Updated last year
• ghsec / webHunt
  Web App bug hunting
  ☆574Updated 8 months ago
• dwisiswant0 / findom-xss
  A fast DOM based XSS vulnerability scanner with simplicity.
  ☆831Updated 3 years ago
• codingo / Interlace
  Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
  ☆1,277Updated 2 months ago
• ayoubfathi / leaky-paths
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆999Updated last year
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆2,033Updated last year
• Anon-Exploiter / SUID3NUM
  A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom bin…
  ☆645Updated 3 months ago
• s0md3v / Parth
  Heuristic Vulnerable Parameter Scanner
  ☆601Updated last year
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆1,057Updated 2 years ago
• m4ll0k / Atlas
  Quick SQLMap Tamper Suggester
  ☆1,387Updated 3 years ago
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆762Updated 3 years ago
• assetnote / commonspeak2
  Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
  ☆758Updated 2 years ago
• R0X4R / Garud
  An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…
  ☆798Updated 2 years ago
• PentestPad / subzy
  Subdomain takeover vulnerability checker
  ☆1,426Updated last year
• honoki / bbrf-client
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆635Updated 4 months ago
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆961Updated 2 years ago