Alternatives and similar repositories for evilarc

Users that are interested in evilarc are comparing it to the libraries listed below

• taviso / rbndr
  Simple DNS Rebinding Service
  ☆708Updated 5 years ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆643Updated last year
• nccgroup / singularity
  A DNS rebinding attack framework.
  ☆1,233Updated 3 weeks ago
• TarlogicSecurity / Chankro
  Herramienta para evadir disable_functions y open_basedir
  ☆475Updated 2 years ago
• strozfriedberg / PadBuster
  Automated script for performing Padding Oracle attacks
  ☆799Updated last year
• jmdx / TLS-poison
  ☆707Updated last year
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,117Updated last year
• PortSwigger / http-request-smuggler
  ☆1,166Updated 2 months ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆612Updated 4 years ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆664Updated last year
• irsdl / IIS-ShortName-Scanner
  latest version of scanners for IIS short filename (8.3) disclosure vulnerability
  ☆1,608Updated 2 years ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆940Updated 3 years ago
• zigoo0 / JSONBee
  A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
  ☆736Updated last year
• 0xacb / viewgen
  Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys
  ☆653Updated 10 months ago
• jrmdev / mitm_relay
  Hackish way to intercept and modify non-HTTP protocols through Burp & others.
  ☆618Updated last year
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆706Updated 7 months ago
• filedescriptor / untrusted-types
  ☆692Updated 3 years ago
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆768Updated 3 years ago
• nccgroup / LoggerPlusPlus
  Advanced Burp Suite Logging Extension
  ☆683Updated last year
• PortSwigger / param-miner
  ☆1,400Updated 3 months ago
• RenwaX23 / XSS-Payloads
  List of XSS Vectors/Payloads
  ☆1,348Updated 11 months ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,699Updated last year
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆387Updated last year
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆745Updated 2 years ago
• nongiach / sudo_inject
  [Linux] Two Privilege Escalation techniques abusing sudo token
  ☆729Updated 6 years ago
• veracode-research / solr-injection
  Apache Solr Injection Research
  ☆580Updated 5 years ago
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆2,040Updated last year
• nccgroup / AutoRepeater
  Automated HTTP Request Repeating With Burp Suite
  ☆890Updated 4 years ago
• allanlw / svg-cheatsheet
  A cheatsheet for exploiting server-side SVG processors.
  ☆783Updated 5 years ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,477Updated last year