Alternatives and similar repositories for xss-payload-list:

Users that are interested in xss-payload-list are comparing it to the libraries listed below

• payloadbox / command-injection-payload-list
  🎯 Command Injection Payload List
  ☆3,189Updated 8 months ago
• payloadbox / sql-injection-payload-list
  🎯 SQL Injection Payload List
  ☆5,348Updated 8 months ago
• MarcusProgram / MarcusProgram
  ☆3Updated 5 months ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,083Updated last month
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,766Updated 3 years ago
• EdOverflow / bugbounty-cheatsheet
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆6,070Updated last year
• s0md3v / Arjun
  HTTP parameter discovery suite.
  ☆5,528Updated last month
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,105Updated last month
• ticarpi / jwt_tool
  A toolkit for testing, tweaking and cracking JSON Web Tokens
  ☆5,688Updated 7 months ago
• streaak / keyhacks
  Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
  ☆5,394Updated 7 months ago
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,126Updated last month
• reddelexc / hackerone-reports
  Top disclosed reports from HackerOne
  ☆4,386Updated this week
• xmendez / wfuzz
  Web application fuzzer
  ☆6,120Updated 7 months ago
• kleiton0x00 / Advanced-SQL-Injection-Cheatsheet
  A cheat sheet that contains advanced queries for SQL Injection of all types.
  ☆2,979Updated last year
• six2dez / OneListForAll
  Rockyou for web fuzzing
  ☆2,740Updated last month
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,897Updated 11 months ago
• GerbenJavado / LinkFinder
  A python script that finds endpoints in JavaScript files
  ☆3,870Updated 11 months ago
• The-Z-Labs / linux-exploit-suggester
  Linux privilege escalation auditing tool
  ☆5,863Updated last year
• fuzzdb-project / fuzzdb
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆8,456Updated last year
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,735Updated 2 years ago
• mandatoryprogrammer / xsshunter-express
  An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
  ☆1,791Updated last year
• rebootuser / LinEnum
  Scripted Local Linux Enumeration & Privilege Escalation Checks
  ☆7,268Updated last year
• tomnomnom / waybackurls
  Fetch all the URLs that the Wayback Machine knows about for a domain
  ☆3,794Updated 10 months ago
• lc / gau
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
  ☆4,268Updated 2 months ago
• tomnomnom / httprobe
  Take a list of domains and probe for working HTTP and HTTPS servers
  ☆2,967Updated 9 months ago
• pentestmonkey / php-reverse-shell
  ☆2,381Updated 7 months ago
• pgaijin66 / XSS-Payloads
  This repository holds all the list of advanced XSS payloads that can be used in penetration testing. These payloads can be loaded into XS…
  ☆1,061Updated 8 months ago
• tomnomnom / assetfinder
  Find domains and subdomains related to a given domain
  ☆3,200Updated 9 months ago
• KathanP19 / HowToHunt
  Collection of methodology and test case for various web vulnerabilities.
  ☆6,314Updated last week
• ngalongc / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆3,842Updated 7 months ago