Alternatives and similar repositories for xss-labs

Users that are interested in xss-labs are comparing it to the libraries listed below

• 1hack0 / bug-bounty-101
  Happy Hunting
  ☆136Updated 6 years ago
• owtf / wafbypasser
  ☆79Updated 10 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆140Updated 6 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 7 years ago
• C1h2e1 / Recon
  Easy Fast recon script
  ☆30Updated 5 years ago
• WangYihang / Exploit-Framework
  An Exploit framework for Web Vulnerabilities written in Python
  ☆170Updated 4 years ago
• CSPF-Founder / btslab
  Vulnerable web application
  ☆79Updated 2 years ago
• Q2h1Cg / xss_scan
  XSS Scan
  ☆105Updated 11 years ago
• nixawk / fuzzdb
  Web Fuzzing Discovery and Attack Pattern Database
  ☆114Updated 7 years ago
• breaktoprotect / CVE-2017-12615
  POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.
  ☆112Updated 2 years ago
• pyn3rd / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows
  ☆187Updated 5 years ago
• m6a-UdS / ssrf-lab
  Lab for exploring SSRF vulnerabilities
  ☆247Updated 4 years ago
• aj00200 / xssed
  A set of XSS vulnerable PHP scripts for testing
  ☆39Updated 12 years ago
• brianwrf / WordPress_4.9.8_RCE_POC
  A simple PoC for WordPress RCE (author priviledge), refer to CVE-2019-8942 and CVE-2019-8943.
  ☆74Updated 6 years ago
• CHYbeta / WAF-Bypass
  WAF Bypass Cheatsheet
  ☆214Updated 7 years ago
• PortSwigger / j2ee-scan
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆75Updated 3 years ago
• jas502n / BurpSuite_Pro_v1.7.37
  ☆56Updated 6 years ago
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆110Updated 6 years ago
• 5up3rc / NagaScan
  NagaScan is a distributed passive scanner for Web application.
  ☆90Updated 8 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆118Updated 4 years ago
• jas502n / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows - CGI-BIN
  ☆78Updated 6 years ago
• LandGrey / CVE-2018-2894
  CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script
  ☆139Updated 6 years ago
• jas502n / SqlMap_BurpSuite
  SqlMap_BurpSuite
  ☆50Updated 5 years ago
• ezelf / f5_cookieLeaks
  Decode the cookies set by balancer F5, and disclousure all pool ip
  ☆77Updated 5 years ago
• starnightcyber / findSubDomains
  A tool finding sub-domains for penetesters
  ☆59Updated 4 years ago
• az0ne / jboss_autoexploit
  JBoss JMXInvokerServlet JMXInvoker 0.3 - Remote Command Execution​ 漏洞批量检测
  ☆67Updated 9 years ago
• aipengjie / sensitivefilescan
  ☆184Updated 2 years ago
• sdsecurity / pooltest
  网上收集的一些利用工具
  ☆18Updated 2 years ago
• Martin2877 / sqliv-M
  sqliv modified by Ali0th
  ☆13Updated 7 years ago
• jas502n / CVE-2019-11581
  Atlassian JIRA Template injection vulnerability RCE
  ☆93Updated 5 years ago