Alternatives and similar repositories for andor

Users that are interested in andor are comparing it to the libraries listed below

• tismayil / rsdl
  Subdomain Scan With Ping Method.
  ☆46Updated 5 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆155Updated 5 years ago
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆83Updated 3 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆46Updated 2 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆70Updated 5 years ago
• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆43Updated 2 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• tomnomnom / burl
  A Broken-URL Checker
  ☆82Updated 8 years ago
• secdec / xssmap
  Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
  ☆150Updated 3 years ago
• pikpikcu / nuubi
  Nuubi Tools (Information-ghatering|Scanner|Recon.)
  ☆87Updated 5 years ago
• hakluke / hakq
  A basic golang server/client for distributing tasks over multiple systems.
  ☆39Updated 5 years ago
• ZephrFish / BurpFeed
  Hacked together script for feeding urls into Burp's Sitemap
  ☆93Updated last month
• viperbluff / Firebase-Extractor
  A tool written in python for scraping firebase data
  ☆45Updated 5 years ago
• hahwul / mzap
  ⚡️ Multiple target ZAP Scanning
  ☆105Updated 2 years ago
• rishuranjanofficial / JWTweak
  Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.
  ☆100Updated 6 months ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆102Updated last year
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆65Updated 4 years ago
• harleo / asnip
  ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
  ☆218Updated 3 years ago
• Shivangx01b / BountyIt
  A fuzzer made in golang for finding issues like xss, lfi, rce, ssti...that detects issues using change in content length and verify it us…
  ☆62Updated 5 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆63Updated 3 years ago
• roottusk / xforwardy
  Host Header Injection Scanner
  ☆49Updated 5 years ago
• ameenmaali / endpointdiff
  Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.
  ☆41Updated 6 years ago
• choirurrizal / paraminer
  finds hidden parameters
  ☆23Updated 2 years ago
• nikhil1232 / Bucket-Flaws
  Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations
  ☆58Updated 5 years ago
• cybercdh / dirlstr
  Finds Directory Listings or open S3 buckets from a list of URLs
  ☆52Updated 4 years ago
• hahwul / s3reverse
  The format of various s3 buckets is convert in one format. for bugbounty and security testing.
  ☆86Updated 2 years ago
• tarunkant / EndPoint-Finder
  Finds the End-Points in JavaScript files
  ☆97Updated 4 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆107Updated 5 years ago
• profmoriarity / wfuxx
  web-based-fuzzer
  ☆32Updated 5 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆82Updated 3 years ago