Alternatives and similar repositories for attack-surface-detector-cli:

Users that are interested in attack-surface-detector-cli are comparing it to the libraries listed below

• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆209Updated 10 months ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆258Updated 2 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆205Updated last year
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆102Updated last year
• dariusztytko / vhosts-sieve
  Searching for virtual hosts among non-resolvable domains
  ☆88Updated 4 years ago
• wallarm / jwt-heartbreaker
  The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources
  ☆130Updated 4 years ago
• codewatchorg / Burp-UserAgent
  Automatically modify the User-Agent header in all Burp requests
  ☆56Updated 7 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆51Updated 2 years ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆87Updated 7 months ago
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• nccgroup / CollaboratorPlusPlus
  ☆148Updated 3 years ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆155Updated 2 years ago
• PortSwigger / stepper
  A natural evolution of Burp Suite's Repeater tool
  ☆92Updated last year
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆157Updated 4 years ago
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆127Updated last year
• defparam / tiscripts
  Turbo Intruder Scripts
  ☆221Updated 4 years ago
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆98Updated last year
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆174Updated 2 years ago
• bcoles / jira_scan
  A simple remote scanner for Atlassian Jira
  ☆121Updated 2 years ago
• The-Login / DNS-Reset-Checker
  Tools to assess the DNS security of web applications
  ☆128Updated 2 years ago
• aress31 / openapi-parser
  Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …
  ☆200Updated last year
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆52Updated 3 years ago
• shelld3v / aquatone
  A Tool for Domain Flyovers
  ☆104Updated 5 months ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆235Updated 4 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated last year
• hahwul / XSS-Payload-without-Anything
  XSS Payload without Anything.
  ☆106Updated 5 years ago
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆133Updated 3 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• codingo / crithit
  Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…
  ☆211Updated 5 years ago
• BBhacKing / jwt_secrets
  A list of "secrets" from JWT sample code and readme files.
  ☆55Updated 4 years ago