Alternatives and similar repositories for xss-payload-list

Users that are interested in xss-payload-list are comparing it to the libraries listed below

• payloadbox / sql-injection-payload-list
  🎯 SQL Injection Payload List
  ☆6,012Updated last year
• payloadbox / command-injection-payload-list
  🎯 Command Injection Payload List
  ☆3,630Updated last year
• EdOverflow / bugbounty-cheatsheet
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆6,304Updated 2 years ago
• mandatoryprogrammer / xsshunter-express
  An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
  ☆2,113Updated last year
• xmendez / wfuzz
  Web application fuzzer
  ☆6,336Updated last year
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,867Updated 4 years ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,447Updated 9 months ago
• reddelexc / hackerone-reports
  Top disclosed reports from HackerOne
  ☆5,004Updated last week
• kleiton0x00 / Advanced-SQL-Injection-Cheatsheet
  A cheat sheet that contains advanced queries for SQL Injection of all types.
  ☆3,101Updated 2 years ago
• hahwul / dalfox
  🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
  ☆4,687Updated this week
• devanshbatham / Awesome-Bugbounty-Writeups
  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
  ☆5,401Updated 2 years ago
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,311Updated 9 months ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆4,070Updated last year
• aboul3la / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆10,693Updated last year
• guelfoweb / knock
  Knock Subdomain Scan
  ☆4,093Updated 3 weeks ago
• s0md3v / AwesomeXSS
  Awesome XSS stuff
  ☆5,021Updated last year
• GerbenJavado / LinkFinder
  A python script that finds endpoints in JavaScript files
  ☆4,177Updated last year
• ngalongc / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆4,017Updated last year
• s0md3v / Arjun
  HTTP parameter discovery suite.
  ☆5,932Updated 8 months ago
• fuzzdb-project / fuzzdb
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆8,725Updated 2 years ago
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,874Updated 3 years ago
• pgaijin66 / XSS-Payloads
  This repository holds all the list of advanced XSS payloads that can be used in penetration testing. These payloads can be loaded into XS…
  ☆1,094Updated last year
• lc / gau
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
  ☆4,669Updated 10 months ago
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,397Updated 2 months ago
• jhaddix / tbhm
  The Bug Hunters Methodology
  ☆4,172Updated 2 years ago
• pentestmonkey / php-reverse-shell
  ☆2,609Updated last year
• rebootuser / LinEnum
  Scripted Local Linux Enumeration & Privilege Escalation Checks
  ☆7,689Updated 2 years ago
• tomnomnom / waybackurls
  Fetch all the URLs that the Wayback Machine knows about for a domain
  ☆4,201Updated last year
• AutoRecon / AutoRecon
  AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
  ☆5,793Updated this week
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,524Updated last week