Alternatives and similar repositories for SSRF-Testing

Users that are interested in SSRF-Testing are comparing it to the libraries listed below

• BitTheByte / BitBlinder
  BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
  ☆117Updated last month
• zeroc00I / ReconNotes
  Just some public notes that can be useful and i want let the world knows.
  ☆88Updated 5 years ago
• PatrikFehrenbach / amass-tools
  ☆105Updated 5 years ago
• udit-thakkur / AdvancedKeyHacks
  API Key/Token Exploitation Made easy.
  ☆93Updated 4 years ago
• Leoid / MatchandReplace
  Match and Replace script used to automatically generate JSON option file to BurpSuite
  ☆215Updated 6 years ago
• dwisiswant0 / wadl-dumper
  Dump all available paths and/or endpoints on WADL file.
  ☆98Updated 2 months ago
• dwisiswant0 / slackcat
  A simple way of sending messages from the CLI output to your Slack with webhook.
  ☆116Updated 2 years ago
• buggysolid / bugbounty-wordlist
  Real world bug bounty wordlists
  ☆117Updated 2 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆87Updated 4 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆112Updated 3 years ago
• random-robbie / bugbountydork
  Bug Bounty Dork
  ☆72Updated 3 years ago
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆94Updated 3 years ago
• jakejarvis / bounty-domains
  List of domains in scope for bug bounties (HackerOne, Bugcrowd, etc.)
  ☆74Updated 4 years ago
• subfinder / goaltdns
  A permutation generation tool written in golang
  ☆206Updated 6 years ago
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆185Updated 5 years ago
• devanshbatham / awesome-bughunting-oneliners
  A list of Awesome Bughunting oneliners , collected from the various sources
  ☆69Updated 2 years ago
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆156Updated 2 years ago
• tarunkant / EndPoint-Finder
  Finds the End-Points in JavaScript files
  ☆99Updated 4 years ago
• Sjord / messpostage
  PostMessage extension
  ☆102Updated 6 years ago
• dwisiswant0 / bounty-targets-alert
  It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.
  ☆59Updated 3 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆85Updated 5 years ago
• Sambal0x / Recon-tools
  Some of my bug bounty tools
  ☆52Updated 6 years ago
• lc / DOD-Recon
  Recon for Department of Defense HackerOne program
  ☆47Updated 7 years ago
• BugBountyResources / targets
  A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…
  ☆99Updated 4 years ago
• JavierOlmedo / UltimateCMSWordlists
  📚 An ultimate collection wordlists of the best-known CMS
  ☆93Updated last year
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆87Updated 3 years ago
• assetnote / h2csmuggler
  ☆75Updated last year
• junnlikestea / vita
  A tool to find subdomains or domains from passive sources.
  ☆112Updated 5 years ago
• tehryanx / sprawl
  Expand urls into one url for each path depth
  ☆32Updated 5 years ago
• Abss0x7tbh / bass
  Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers …
  ☆147Updated last year