Alternatives and similar repositories for xssmap:

Users that are interested in xssmap are comparing it to the libraries listed below

• ghostlulzhacks / waybackSqliScanner
  ☆191Updated 5 years ago
• Cillian-Collins / subscraper
  Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…
  ☆223Updated 4 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆157Updated 4 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆223Updated 4 months ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆101Updated 4 months ago
• zseano / JS-Scan
  a .js scanner, built in php. designed to scrape urls and other info
  ☆212Updated 7 years ago
• zseano / InputScanner
  ☆241Updated 6 years ago
• chrispetrou / FDsploit
  File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
  ☆271Updated 3 years ago
• MichaelStott / CRLF-Injection-Scanner
  Command line tool for testing CRLF injection on a list of domains.
  ☆162Updated 10 months ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆193Updated 3 years ago
• KathanP19 / gaussrf
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆168Updated 4 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆245Updated 2 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆213Updated 4 months ago
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆113Updated 3 years ago
• Mad-robot / Spartan
  My Recon Automation
  ☆194Updated 3 years ago
• dark-warlord14 / JSScanner
  You can read the writeup on this script here
  ☆270Updated 4 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆204Updated last year
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆299Updated 4 years ago
• 0xspade / Automated-Scanner
  Trying to make automated recon for bug bounties
  ☆252Updated 3 years ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆152Updated 2 years ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆275Updated 4 years ago
• R0X4R / D4rkXSS
  A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF
  ☆165Updated 4 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆300Updated 2 years ago
• In3tinct / See-SURF
  Python based scanner to find potential SSRF parameters
  ☆313Updated last week
• edduu / Arjun
  HTTP parameter discovery suite.
  ☆94Updated 4 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆135Updated last year
• BonJarber / SecUtils
  Random utilities from my security projects that might be useful to others
  ☆179Updated last month
• codingo / crithit
  Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…
  ☆208Updated 4 years ago
• SilverPoision / a-full-list-of-wordlists
  this contain the burp pack
  ☆206Updated 8 years ago
• Shashank-In / TravisLeaks
  A tool to find sensitive keys and passwords in Travis logs
  ☆141Updated 3 years ago