Alternatives and similar repositories for Payloads-and-wordlists

Users that are interested in Payloads-and-wordlists are comparing it to the libraries listed below

• mhmdiaa / waybackrobots
  Enumerate old versions of robots.txt paths using Wayback Machine for content discovery
  ☆52Updated last year
• shifa123 / clickjackingpoc
  A Proof of Concept for Clickjacking Attacks
  ☆57Updated 4 years ago
• bm402 / apidor
  A tool that automates the search for IDOR vulnerabilities in web apps and APIs
  ☆61Updated 4 years ago
• Suryesh / Firebase_Checker
  This Python script automates the process of identifying vulnerabilities in Firebase configurations extracted from APK files.
  ☆44Updated 4 months ago
• tamimhasan404 / FFUF-Tips-And-Tricks
  Describe how to use ffuf different options with examples
  ☆88Updated 2 years ago
• byt3hx / 403-bypass
  403-bypass tool to bypass 403 responses.
  ☆119Updated 2 years ago
• Mostafa-Elguerdawi / Automation_Bug_Hunting
  ☆68Updated 2 years ago
• hueristiq / xsubfind3r
  A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information f…
  ☆113Updated this week
• moeinfatehi / Backup-Finder
  A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…
  ☆162Updated last year
• DevanshRaghav75 / AutomationGuide
  Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi
  ☆42Updated 4 years ago
• e1abrador / Burp-Encode-IP
  Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.
  ☆44Updated last year
• ethicalhackingplayground / dnsresolver
  A Lightning-Fast DNS Resolver written in Rust 🦀
  ☆67Updated 8 months ago
• PushpenderIndia / Log4jScanner
  Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.
  ☆52Updated 3 years ago
• gwen001 / google-search
  Returns results from Google search.
  ☆49Updated 2 years ago
• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆31Updated last year
• ifconfig-me / knoxss-bulk-scan
  ☆43Updated 10 months ago
• gwen001 / gitlab-subdomains
  Find subdomains on GitLab.
  ☆103Updated last year
• cve-sandbox / jquery
  CVE Collection of jQuery XSS Payloads
  ☆71Updated 2 years ago
• SirBugs / Xssor.go
  Xssor.go is a xss reflections checker for urls
  ☆71Updated 2 years ago
• Anof-cyber / ParaForge
  A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
  ☆140Updated 2 years ago
• ethicalhackingplayground / pathbuster
  A path-normalization pentesting tool.
  ☆128Updated last year
• Chocapikk / LFIHunt
  Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities
  ☆33Updated 2 years ago
• kaanatmacaa / pdf-injection
  Tool to create XSS PDF files
  ☆59Updated last year
• reewardius / iis-pentest
  ☆75Updated last month
• ShutdownRepo / httpmethods
  HTTP verb tampering & methods enumeration
  ☆63Updated last week
• thehlopster / hfuzz
  Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templ…
  ☆101Updated 4 months ago
• Dancas93 / SSRF-Scanner
  A Complete SSRF (Server Side Request Forgery) Scanner.
  ☆37Updated 6 months ago
• zapstiko / Bug-Bounty
  Here Are Some Bug Bounty Resource From Twitter
  ☆99Updated 2 months ago
• alpernae / AIHTTPAnalyzer
  AIHTTPAnalyzer revolutionizes web application security testing by bringing artificial intelligence capabilities to Burp Suite. This innov…
  ☆58Updated 5 months ago
• 0xKayala / Custom-Nuclei-Templates
  Community curated list of templates for the nuclei engine to find security vulnerabilities.
  ☆67Updated 4 months ago