Alternatives and similar repositories for xss

Users that are interested in xss are comparing it to the libraries listed below

• 1N3 / XSSTracer
  A small python script to check for Cross-Site Tracing (XST)
  ☆132Updated 9 years ago
• httpoxy / php-fpm-httpoxy-poc
  A PoC for exploiting Guzzle's HTTP_PROXY untrusted read
  ☆55Updated 9 years ago
• gabemarshall / casperXSS
  Reflective/DOM XSS scanner built on casperJS
  ☆81Updated 11 years ago
• avicoder / Hackerone
  Hackerone disclosed report URL Aggregator
  ☆30Updated 7 years ago
• incredibleindishell / sqlite-lab
  This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is f…
  ☆160Updated 4 years ago
• PaulSec / CSRFT
  A lightweight CSRF Toolkit for easy Proof of concept
  ☆172Updated 11 years ago
• ajinabraham / Static-DOM-XSS-Scanner
  Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …
  ☆119Updated 10 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆86Updated 11 years ago
• enjoiz / BSQLinjector
  Blind SQL injection exploitation tool written in ruby.
  ☆99Updated last year
• yehia-mamdouh / XSSYA-V-2.0
  ☆83Updated 8 years ago
• ajinabraham / WebAppSec
  Web Application Security
  ☆129Updated last month
• gfoss / attacking-drupal
  Scripts used to augment the penetration testing process of Drupal web applications.
  ☆95Updated 8 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆139Updated 5 years ago
• wick2o / gitDigger
  ☆181Updated 12 years ago
• danTaler / detectionString
  list of sql-injection and XSS strings
  ☆113Updated 10 years ago
• silentsignal / burp-image-size
  Image size issues plugin for Burp Suite
  ☆95Updated 7 years ago
• Ganapati / Crawlic
  Web recon tool (find temporary files, parse robots.txt, search some folders, google dorks and search domains hosted on same server)
  ☆104Updated 9 years ago
• daudmalik06 / ReconCat
  A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any yea…
  ☆77Updated 7 years ago
• LunaM00n / File-Upload-Lab
  Damn Vulnerable File Upload V 1.1
  ☆101Updated 7 years ago
• alienwithin / OWASP-mth3l3m3nt-framework
  OWASP Mth3l3m3nt Framework is a penetration testing aiding tool and exploitation framework. It fosters a principle of attack the web usin…
  ☆163Updated 4 years ago
• andresriancho / w3af-webui
  Django Web UI contributed by Yandex for w3af.
  ☆50Updated 10 years ago
• SecurityCompass / XSSMe
  Part of the ExploitMe Suite of tools
  ☆39Updated 12 years ago
• neuroo / apache-scalp
  Scalp! is a log analyzer for the Apache web server that aims to look for security problems
  ☆57Updated 4 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 13 years ago
• silentsignal / duncan
  Duncan - Blind SQL injector skeleton
  ☆59Updated 3 years ago
• emanuil / php-reaper
  PHP tool to scan ADOdb code for SQL Injections
  ☆31Updated 9 years ago
• guelfoweb / wp-waf
  [PHP] WordPress Application Firewall
  ☆34Updated 12 years ago
• yehia-mamdouh / XSSYA
  XSSYA (Cross Site Scripting Scanner & Vulnerability Confirmation)
  ☆97Updated 2 years ago
• Meatballs1 / burp-extensions
  Burp Suite Extensions
  ☆129Updated 12 years ago
• avicoder / spoodle
  A mass subdomain (Subbrute) + poodle vulnerability scanner
  ☆75Updated 7 years ago