Alternatives and similar repositories for awesome-burp-extensions

Users that are interested in awesome-burp-extensions are comparing it to the libraries listed below

• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,857Updated 4 years ago
• GerbenJavado / LinkFinder
  A python script that finds endpoints in JavaScript files
  ☆4,146Updated last year
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,390Updated 8 months ago
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,367Updated last month
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,754Updated last year
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆2,082Updated last year
• almandin / fuxploider
  File upload vulnerability scanner and exploitation tool.
  ☆3,266Updated 5 months ago
• bugcrowd / HUNT
  ☆2,287Updated last year
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,448Updated 9 months ago
• s0md3v / Arjun
  HTTP parameter discovery suite.
  ☆5,899Updated 8 months ago
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,862Updated 3 years ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,437Updated last year
• nahamsec / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆1,999Updated 4 years ago
• ssl / ezXSS
  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
  ☆2,145Updated 2 months ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆4,047Updated last year
• streaak / keyhacks
  Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
  ☆5,839Updated last year
• Bo0oM / fuzz.txt
  Potentially dangerous files
  ☆3,227Updated last month
• pry0cc / axiom
  The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…
  ☆4,294Updated last year
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,487Updated 2 weeks ago
• arkadiyt / bounty-targets-data
  This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …
  ☆3,489Updated this week
• tomnomnom / waybackurls
  Fetch all the URLs that the Wayback Machine knows about for a domain
  ☆4,145Updated last year
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆2,020Updated last year
• jaeles-project / jaeles
  The Swiss Army knife for automated Web Application Testing
  ☆2,290Updated last year
• lc / gau
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
  ☆4,612Updated 9 months ago
• tomnomnom / assetfinder
  Find domains and subdomains related to a given domain
  ☆3,420Updated last year
• devanshbatham / ParamSpider
  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
  ☆2,891Updated last year
• EdOverflow / bugbounty-cheatsheet
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆6,285Updated 2 years ago
• tomnomnom / httprobe
  Take a list of domains and probe for working HTTP and HTTPS servers
  ☆3,056Updated last year
• six2dez / OneListForAll
  Rockyou for web fuzzing
  ☆2,928Updated last month
• techgaun / github-dorks
  Find leaked secrets via github search
  ☆3,057Updated 2 weeks ago