Alternatives and similar repositories for h2rs:

Users that are interested in h2rs are comparing it to the libraries listed below

• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆131Updated 4 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• clarkvoss / AEM-List
  ☆95Updated 3 years ago
• trickest / log4j
  Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
  ☆110Updated 3 years ago
• defparam / haptyc
  ☆94Updated 3 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆71Updated 3 years ago
• imrannissar / Content-discovery
  ☆93Updated 4 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated last year
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆66Updated 4 years ago
• 0xAwali / Virtual-Host
  Modified Nuclei Templates Version to FUZZ Host Header
  ☆49Updated 3 years ago
• panch0r3d / nuclei-templates
  ☆87Updated 3 years ago
• assetnote / h2csmuggler
  ☆71Updated last year
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆65Updated 2 years ago
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆36Updated 2 years ago
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆88Updated 3 years ago
• esetal / nuclei-bb-templates
  nuclei-bb-templates
  ☆49Updated 2 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆82Updated 3 years ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Updated 4 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 3 years ago
• Cache-Money / chronorace
  ☆70Updated 3 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆115Updated 4 years ago
• R0X4R / bhedak
  A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.
  ☆105Updated 3 years ago
• dwisiswant0 / wadl-dumper
  Dump all available paths and/or endpoints on WADL file.
  ☆93Updated 2 weeks ago
• j3ssie / goverview
  goverview - Get an overview of the list of URLs
  ☆143Updated last year
• michael1026 / trashcompactor
  ☆65Updated 2 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆120Updated 3 years ago
• dwisiswant0 / unew
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆121Updated 3 years ago
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆158Updated last year
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆115Updated 2 years ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆61Updated 2 years ago