Alternatives and similar repositories for xssmap

Users that are interested in xssmap are comparing it to the libraries listed below

• MichaelStott / CRLF-Injection-Scanner
  Command line tool for testing CRLF injection on a list of domains.
  ☆165Updated last year
• ghostlulzhacks / waybackSqliScanner
  ☆199Updated 6 years ago
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆112Updated 4 years ago
• chrispetrou / FDsploit
  File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
  ☆273Updated 4 years ago
• jakejarvis / subtake
  Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
  ☆151Updated 5 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆226Updated last year
• Damian89 / extended-xss-search
  A better version of my xssfinder tool - scans for different types of xss on a list of urls.
  ☆188Updated 6 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆156Updated 5 years ago
• 0xdekster / deksterecon
  Web Application recon automation
  ☆125Updated 5 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆155Updated 5 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆216Updated last year
• KathanP19 / gaussrf
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆173Updated 5 years ago
• 0xbharath / domains-from-csp
  A script to extract domain names from Content Security Policy(CSP) headers
  ☆113Updated 6 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆192Updated 4 years ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆153Updated 3 years ago
• Shashank-In / TravisLeaks
  A tool to find sensitive keys and passwords in Travis logs
  ☆140Updated 4 years ago
• zseano / JS-Scan
  a .js scanner, built in php. designed to scrape urls and other info
  ☆226Updated 8 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆107Updated 5 years ago
• hahwul / XSS-Payload-without-Anything
  XSS Payload without Anything.
  ☆104Updated 6 years ago
• Mad-robot / Spartan
  My Recon Automation
  ☆194Updated 4 years ago
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆293Updated 6 years ago
• dark-warlord14 / JSScanner
  You can read the writeup on this script here
  ☆274Updated 5 years ago
• Cillian-Collins / subscraper
  Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…
  ☆223Updated 5 years ago
• BitTheByte / BitBlinder
  BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
  ☆117Updated last month
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆280Updated 4 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆102Updated last year
• wish-i-was / femida
  Automated blind-xss search for Burp Suite
  ☆287Updated 6 years ago
• shiblisec / Rekon
  The project contains multiple shell scripts for automating the tasks during recon.
  ☆174Updated 2 years ago
• vavkamil / XFFenum
  X-Forwarded-For [403 forbidden] enumeration
  ☆99Updated last year
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆174Updated 4 years ago