Alternatives and similar repositories for Payloads-and-wordlists

Users that are interested in Payloads-and-wordlists are comparing it to the libraries listed below

• mhmdiaa / waybackrobots
  Enumerate old versions of robots.txt paths using Wayback Machine for content discovery
  ☆52Updated last year
• Mostafa-Elguerdawi / Automation_Bug_Hunting
  ☆68Updated 2 years ago
• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆30Updated last year
• adamjsturge / easy-xsshunter-express
  The fastest way to setup XSSHunter. It has options for the official and Discord/Slack Forks
  ☆44Updated last year
• PushpenderIndia / Log4jScanner
  Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.
  ☆52Updated 3 years ago
• shifa123 / clickjackingpoc
  A Proof of Concept for Clickjacking Attacks
  ☆56Updated 4 years ago
• tamimhasan404 / FFUF-Tips-And-Tricks
  Describe how to use ffuf different options with examples
  ☆88Updated 2 years ago
• Suryesh / Firebase_Checker
  This Python script automates the process of identifying vulnerabilities in Firebase configurations extracted from APK files.
  ☆44Updated 5 months ago
• hueristiq / xsubfind3r
  A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information f…
  ☆113Updated 2 weeks ago
• emadshanab / Content-Discovery-Web-Dir-Bruteforce-wordlists-Collection
  ☆37Updated last year
• Stonzyy / dumpxss
  Scanner Tool For XSS Vulnerability
  ☆81Updated 3 years ago
• zapstiko / Bug-Bounty
  Here Are Some Bug Bounty Resource From Twitter
  ☆100Updated 3 months ago
• bm402 / apidor
  A tool that automates the search for IDOR vulnerabilities in web apps and APIs
  ☆59Updated 4 years ago
• gwen001 / gitlab-subdomains
  Find subdomains on GitLab.
  ☆104Updated last year
• victoni / Bug-Bounty-Scripts
  The scripts I write to help me on my bug bounty hunting
  ☆122Updated 3 years ago
• cve-sandbox / jquery
  CVE Collection of jQuery XSS Payloads
  ☆71Updated 2 years ago
• moeinfatehi / Backup-Finder
  A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…
  ☆161Updated last year
• ifconfig-me / knoxss-bulk-scan
  ☆43Updated 11 months ago
• Akokonunes / Private-Nuclei-Templates
  ☆163Updated 2 years ago
• burak0x01 / findsecret
  Find secret keys from JS file
  ☆52Updated 2 years ago
• six2dez / resolvers_reconftw
  Resolvers updated daily for reconftw
  ☆47Updated 2 years ago
• omarhashem123 / Security-Research
  This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research
  ☆44Updated 2 years ago
• thehlopster / hfuzz
  Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templ…
  ☆100Updated 5 months ago
• kursadalsan / fastbugbounty
  Fast Bug Bounty Script
  ☆38Updated 7 months ago
• ethicalhackingplayground / pathbuster
  A path-normalization pentesting tool.
  ☆129Updated last year
• gwen001 / google-search
  Returns results from Google search.
  ☆50Updated 2 years ago
• mathis2001 / ParamFirstCheck
  ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …
  ☆34Updated last year
• emadshanab / BChecks-Collection
  BChecks collection for Burp Suite Professional
  ☆99Updated last year
• DevanshRaghav75 / AutomationGuide
  Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi
  ☆40Updated 4 years ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆78Updated last year