Alternatives and similar repositories for xssmap

Users that are interested in xssmap are comparing it to the libraries listed below

• dutchcoders / anam
  Mass scanning the internet (http and https) using a raw tcpstack.
  ☆58Updated 8 years ago
• Matir / webborer
  WebBorer is a directory-enumeration tool written in Go.
  ☆44Updated 2 years ago
• Hood3dRob1n / CVE-2016-3714
  ImaegMagick Code Execution (CVE-2016-3714)
  ☆69Updated 9 years ago
• joanbono / Gurp
  Burp Commander written in Go
  ☆57Updated 6 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 9 years ago
• evilsocket / brutemachine
  A Go library which main purpose is giving an interface to loop over a dictionary and use those words/lines as input for some custom logic…
  ☆56Updated 8 years ago
• digininja / vuLnDAP
  A vulnerable LDAP based web app written in Golang
  ☆83Updated last year
• subfinder / urlx
  extracts urls from text
  ☆16Updated 7 years ago
• TheHackerDev / input-field-finder
  Spiders given URLs for input fields.
  ☆17Updated 8 years ago
• hex0punk / goRE
  A modular bug hunting and web application pentesting framework written in Go
  ☆57Updated 3 years ago
• avineshwar / slurp
  S3 bucket enumerator
  ☆44Updated 7 years ago
• magisterquis / sshbf
  Simple SSH brute-forcer written in Go
  ☆21Updated 9 years ago
• SpiderLabs / burplay
  Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…
  ☆83Updated 8 years ago
• stamparm / DSFS
  Damn Small FI Scanner
  ☆61Updated 5 years ago
• bayotop / sink-logger
  Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.
  ☆49Updated 3 years ago
• strawp / web-shells
  Web shells for use in penetration testing
  ☆40Updated 10 years ago
• dnet / burp-oauth
  OAuth plugin for Burp Suite Extender
  ☆42Updated 7 years ago
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 4 years ago
• pbnj / s3-fuzzer
  🔐 A concurrent, command-line AWS S3 Fuzzer. Written in Go.
  ☆45Updated 8 years ago
• smiegles / mass3
  ☆128Updated 6 years ago
• ngalongc / nmap_dnsrecon_result
  A wrap up script to auto perform nmap scan from the result of dnsrecon, then output result with filename as hostname and ip
  ☆11Updated 6 years ago
• subfinder / research
  ❄️ Research project for SubFinder core API V2
  ☆36Updated 6 years ago
• scipag / httprecon-nse
  Advanced web server fingerprinting for Nmap
  ☆131Updated 8 years ago
• irsdl / BurpSuiteJSBeautifier
  Burp Suite JS Beautifier
  ☆100Updated 11 years ago
• empijei / wapty
  [ceased maintenance] An open source alternative to burp suite written in Go.
  ☆156Updated 6 years ago
• OpenSecurityResearch / CustomPassiveScanner
  A Custom Scanner for Burp
  ☆31Updated 11 years ago
• christophetd / nmap-nse-info
  Browse and search through nmap's NSE scripts.
  ☆60Updated 8 years ago
• dsopas / h1-search
  Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
  ☆64Updated 6 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 7 years ago
• GrrrDog / sni_bruter
  TLS SNI virtual hosts bruteforcer
  ☆21Updated 11 years ago