Alternatives and similar repositories for vuln-nodejs-app

Users that are interested in vuln-nodejs-app are comparing it to the libraries listed below

• h1pmnh / sqli-dojo-docker
  A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment
  ☆44Updated last year
• prodigysml / burpsuite-bambda-filters
  ☆32Updated last year
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆95Updated 3 years ago
• clarkvoss / AEM-List
  ☆96Updated 4 years ago
• j3ssie / custom-bcheck-scan
  This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…
  ☆102Updated last year
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆36Updated 3 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆126Updated 6 years ago
• Lupin-Holmes / sandwich
  ☆70Updated last year
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆76Updated 2 years ago
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆83Updated last year
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated 2 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆126Updated 4 years ago
• Rhynorater / rebindMultiA
  ☆63Updated 2 years ago
• dsecuredcom / ffufPostprocessing
  Golang tool which helps dropping the irrelevant entries from your ffuf result file.
  ☆140Updated last year
• fransr / unpack-burp
  For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)
  ☆54Updated 8 months ago
• Lifars / davdts
  Simple Django to show post-exploitation options when server-side template injection (SSTI) is present in app using Django Templates.
  ☆22Updated 4 years ago
• devanshbatham / heaptruffle
  Mine URLs from Browser's Heap Snapshot for fun and profit
  ☆64Updated 2 years ago
• PatrikFehrenbach / vilicus
  vīlicus is a bug bounty api dashboard
  ☆40Updated 2 years ago
• Static-Flow / RepeaterSearch
  This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…
  ☆80Updated 2 years ago
• c3l3si4n / subdomain_data
  Results from analyzing data gathered from 1.6 billion subdomains
  ☆32Updated last year
• clarkvoss / Nuclei-Templates
  ☆84Updated 3 years ago
• EasyRecon / wappaGo
  ☆57Updated last year
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 3 years ago
• seanmarpo / webjars-swagger-xss
  PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]
  ☆53Updated 2 years ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆53Updated 3 years ago
• NitinYadav00 / gf-patterns
  Some of the gf patterns which i use
  ☆45Updated 3 years ago
• 0xRTH / IISRecon
  IIS shortname scanner + bruteforce
  ☆54Updated last year
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆152Updated last year
• sametsahinnet / jsscm
  JSSCM detects expired domains for Stored XSS exploitation during browsing.
  ☆52Updated 6 months ago
• ethicalhackingplayground / pathbuster
  A path-normalization pentesting tool.
  ☆132Updated last month