Alternatives and similar repositories for xss-labs

Users that are interested in xss-labs are comparing it to the libraries listed below

• owtf / wafbypasser
  ☆79Updated 10 years ago
• 1hack0 / bug-bounty-101
  Happy Hunting
  ☆137Updated 6 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆118Updated 4 years ago
• PortSwigger / j2ee-scan
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆75Updated 3 years ago
• masahiro331 / CVE-2020-9484
  ☆127Updated 3 years ago
• C1h2e1 / Recon
  Easy Fast recon script
  ☆29Updated 5 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆141Updated 6 years ago
• nixawk / fuzzdb
  Web Fuzzing Discovery and Attack Pattern Database
  ☆114Updated 7 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 7 years ago
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆110Updated 6 years ago
• jiangsir404 / Xss-Sql-Fuzz
  burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
  ☆62Updated 6 years ago
• PortSwigger / authz
  ☆107Updated 8 years ago
• arbazkiraak / web-cache-deception-checker
  Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages
  ☆44Updated 3 years ago
• CHYbeta / WAF-Bypass
  WAF Bypass Cheatsheet
  ☆214Updated 7 years ago
• Q2h1Cg / xss_scan
  XSS Scan
  ☆105Updated 11 years ago
• theLSA / burp-sensitive-param-extractor
  burpsuite extension for check and extract sensitive request parameter
  ☆113Updated 4 years ago
• jas502n / CVE-2019-11580
  CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE
  ☆106Updated 5 years ago
• g0rx / Drupal-SA-CORE-2019-003
  CVE-2019-6340-Drupal SA-CORE-2019-003
  ☆32Updated 6 years ago
• ThomasTJdev / python_gdork_sqli
  This python script is developed to show, how many vulnerables websites, which are laying around on the web. 1) Scan net for urls prone to…
  ☆54Updated 8 years ago
• aj00200 / xssed
  A set of XSS vulnerable PHP scripts for testing
  ☆39Updated 12 years ago
• firefart / CVE-2018-7600
  CVE-2018-7600 - Drupal 7.x RCE
  ☆72Updated 7 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆63Updated 8 years ago
• pyn3rd / CVE-2018-2893
  CVE-2018-2893-PoC
  ☆103Updated 6 years ago
• IdealDreamLast / CVE-2020-9484
  用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞
  ☆53Updated 5 years ago
• Audi-1 / Awesome-Red-Teaming
  List of Awesome Red Teaming Resources
  ☆45Updated 7 years ago
• LandGrey / CVE-2018-2894
  CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script
  ☆139Updated 6 years ago
• codewhitesec / ColdFusionPwn
  Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12
  ☆95Updated 2 years ago
• NetSPI / Wsdler
  WSDL Parser extension for Burp
  ☆252Updated 7 years ago
• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆165Updated 2 years ago
• jas502n / CVE-2019-11581
  Atlassian JIRA Template injection vulnerability RCE
  ☆93Updated 5 years ago