Alternatives and similar repositories for QRFuzz

Users that are interested in QRFuzz are comparing it to the libraries listed below

• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆125Updated last year
• Tib3rius / Copier
  A Burp extension to help pentesters copy requests / responses for reports.
  ☆50Updated 3 months ago
• valeriyshevchenko90 / WhereToGo
  WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…
  ☆127Updated 3 years ago
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆143Updated 7 months ago
• dreadnode / burpference
  A research project to add some brrrrrr to Burp
  ☆194Updated 8 months ago
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆163Updated 2 weeks ago
• Hipapheralkus / AIAIAI
  An Incredibly Annoying, Insufferable Authentication Implementation
  ☆31Updated last year
• thecybersandeep / mobapp-storage-inspector
  A tool for inspecting and analyzing mobile application storage files.
  ☆47Updated 5 months ago
• forteBruno / Token-Tailor
  Token Tailor is a Burp Suite Community Edition extension that aims to simplify security testing by automating JWT renewal.
  ☆36Updated last month
• d3lb3 / security-code-review
  My personal collection of resources (mostly tools and training materials) for source code security audits.
  ☆91Updated last year
• andrei8055 / SOAPI
  SOAPI - The OpenAPI Documentation Scanner
  ☆37Updated 8 months ago
• trufflesecurity / trufflehog-burp-suite-extension
  Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…
  ☆80Updated 7 months ago
• jumpycastle / rre-burp
  Burp extension for Recursive Request Exploits (RRE) — DEFCON 2025
  ☆96Updated 2 months ago
• JaimePolop / RExpository
  ☆101Updated last year
• yacwagh / FAAST
  Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents
  ☆64Updated 6 months ago
• hackvertor / repeat-strike
  ☆38Updated 4 months ago
• thisis0xczar / FrogPost
  FrogPost: postMessage Security Testing Tool
  ☆98Updated last week
• DarkWolf-Labs / playbooks
  External Playbooks for Public Access
  ☆40Updated 9 months ago
• CyberSecurityUP / smart-contracts-audit-checklist
  ☆28Updated last year
• xronyx / trishul
  ☆31Updated 6 months ago
• assetnote / hopgoblin
  Adobe Experience Manager (AEM) hacking toolkit
  ☆85Updated last month
• jhaddix / CSPReconGO
  ☆105Updated last year
• RikunjSindhwad / Task-Ninja
  Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!
  ☆153Updated last month
• cosad3s / postleaks
  Search for sensitive data in Postman public library.
  ☆214Updated 2 months ago
• dub-flow / vulnerability-research
  This repository contains information on the CVEs I found.
  ☆50Updated last year
• harishsg993010 / DamnVulnerableLLMProject
  A LLM explicitly designed for getting hacked
  ☆162Updated 2 years ago
• 0xSojalSec / Mobile-Application-Security
  Resources for Mobile Application Testing 📓
  ☆69Updated last year
• j4k0m / MultiTapBurp
  A Burp Suite extension that helps track and manage multiple sessions simultaneously by color-coding HTTP requests based on custom pattern…
  ☆28Updated 11 months ago
• rndinfosecguy / OSWA-Experience-And-Exam-Preparation
  My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the exam
  ☆41Updated 2 years ago
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆55Updated 2 years ago