Alternatives and similar repositories for http-garden

Users that are interested in http-garden are comparing it to the libraries listed below

• kevin-mizu / domloggerpp
  A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
  ☆577Updated 2 months ago
• nxenon / h2spacex
  HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆175Updated 6 months ago
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆637Updated last year
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆649Updated last month
• renniepak / CSPBypass
  ☆291Updated this week
• PortSwigger / bambdas
  Bambdas collection for Burp Suite Professional and Community.
  ☆315Updated this week
• owasp-noir / noir
  Attack surface detector that identifies endpoints by static analysis
  ☆700Updated this week
• BishopFox / jsluice
  Extract URLs, paths, secrets, and other interesting bits from JavaScript
  ☆1,542Updated 11 months ago
• 0xacb / recollapse
  REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
  ☆1,072Updated 3 weeks ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆352Updated last week
• AggressiveUser / AllForOne
  AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,
  ☆646Updated last year
• iangcarroll / cookiemonster
  🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
  ☆880Updated 4 months ago
• attacksurge / ax
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…
  ☆492Updated this week
• hakluke / hakoriginfinder
  Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
  ☆867Updated last year
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆304Updated 5 months ago
• Edr4 / XSS-Bypass-Filters
  ☆537Updated 11 months ago
• iustin24 / chameleon
  ☆378Updated 2 years ago
• assetnote / nowafpls
  Burp Plugin to Bypass WAFs through the insertion of Junk Data
  ☆1,129Updated 4 months ago
• xnl-h4ck3r / xnLinkFinder
  A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target
  ☆1,331Updated 3 weeks ago
• Brum3ns / firefly
  Black box fuzzer for web applications
  ☆426Updated 10 months ago
• projectdiscovery / pdtm
  ProjectDiscovery's Open Source Tool Manager
  ☆845Updated 2 weeks ago
• Escape-Technologies / graphql-wordlist
  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
  ☆362Updated last year
• projectdiscovery / alterx
  Fast and customizable subdomain wordlist generator using DSL
  ☆810Updated last month
• c3l3si4n / pugdns
  An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.
  ☆204Updated 3 weeks ago
• lauritzh / domscan
  Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.
  ☆240Updated 3 months ago
• trufflesecurity / xsshunter
  ☆447Updated 3 months ago
• g0ldencybersec / CloudRecon
  ☆487Updated last year
• x1trap / websec-answers
  Websec interview questions by tib3rius answered
  ☆308Updated last year
• sysdig / wafer
  ☆201Updated 11 months ago
• doyensec / wsrepl
  WebSocket REPL for pentesters
  ☆219Updated 9 months ago