Alternatives and similar repositories for evilarc

Users that are interested in evilarc are comparing it to the libraries listed below

• taviso / rbndr
  Simple DNS Rebinding Service
  ☆721Updated 6 years ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆643Updated last year
• nccgroup / singularity
  A DNS rebinding attack framework.
  ☆1,254Updated last month
• TarlogicSecurity / Chankro
  Herramienta para evadir disable_functions y open_basedir
  ☆487Updated 2 years ago
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,127Updated last year
• PortSwigger / http-request-smuggler
  ☆1,178Updated 2 weeks ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆612Updated 4 years ago
• 0xacb / viewgen
  Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys
  ☆658Updated last year
• strozfriedberg / PadBuster
  Automated script for performing Padding Oracle attacks
  ☆803Updated last year
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆671Updated 2 years ago
• jmdx / TLS-poison
  ☆709Updated last year
• RenwaX23 / XSS-Payloads
  List of XSS Vectors/Payloads
  ☆1,357Updated 3 weeks ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,700Updated last year
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆945Updated 4 years ago
• irsdl / IIS-ShortName-Scanner
  latest version of scanners for IIS short filename (8.3) disclosure vulnerability
  ☆1,620Updated 2 years ago
• nccgroup / LoggerPlusPlus
  Advanced Burp Suite Logging Extension
  ☆689Updated last year
• PortSwigger / param-miner
  ☆1,404Updated last week
• nccgroup / AutoRepeater
  Automated HTTP Request Repeating With Burp Suite
  ☆890Updated 4 years ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,481Updated last year
• zigoo0 / JSONBee
  A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
  ☆740Updated last year
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆707Updated 9 months ago
• nongiach / sudo_inject
  [Linux] Two Privilege Escalation techniques abusing sudo token
  ☆732Updated 6 years ago
• wireghoul / dotdotpwn
  DotDotPwn - The Directory Traversal Fuzzer
  ☆1,104Updated 3 years ago
• jrmdev / mitm_relay
  Hackish way to intercept and modify non-HTTP protocols through Burp & others.
  ☆619Updated last year
• veracode-research / solr-injection
  Apache Solr Injection Research
  ☆579Updated 6 years ago
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆757Updated 2 years ago
• filedescriptor / untrusted-types
  ☆694Updated 3 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆388Updated last year
• DiogoMRSilva / websitesVulnerableToSSTI
  Simple websites vulnerable to Server Side Template Injections(SSTI)
  ☆415Updated 2 years ago
• allanlw / svg-cheatsheet
  A cheatsheet for exploiting server-side SVG processors.
  ☆791Updated 5 years ago