Alternatives and similar repositories for wstg:

Users that are interested in wstg are comparing it to the libraries listed below

• michael1026 / trashcompactor
  ☆65Updated 2 years ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆64Updated 2 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆66Updated 4 years ago
• ozguralp / synackapi
  ☆61Updated 6 months ago
• Healdb / Elevate
  Horizontal Domain Discovery
  ☆75Updated last year
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• EasyRecon / wappaGo
  ☆53Updated 8 months ago
• Static-Flow / RepeaterSearch
  This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…
  ☆78Updated last year
• AlfredBerg / dnsline
  Tool for making it easy to collect dns results from the CLI
  ☆39Updated 5 months ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆80Updated 2 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆106Updated 3 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆84Updated 2 years ago
• honoki / bbrf-dashboard
  ☆36Updated this week
• bonino97 / LemonBooster-v2
  Reestructured LemonBooster.
  ☆47Updated 6 months ago
• eslam3kl / 3klector
  3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company
  ☆49Updated 2 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆58Updated 3 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆50Updated last year
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆68Updated 4 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆83Updated 4 years ago
• 0xRTH / IISRecon
  IIS shortname scanner + bruteforce
  ☆50Updated 11 months ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• Rhynorater / reports
  ☆59Updated 6 months ago
• adamjsturge / xsshunter-express
  Archived Please go to https://github.com/adamjsturge/xsshunter-go
  ☆31Updated 10 months ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆90Updated 10 months ago
• v1ll41n / H1-Report-Finder
  A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host
  ☆42Updated 4 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆70Updated 3 years ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Updated 4 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆60Updated last year
• rinetd / BurpSuite-1
  BurpSuite using the document and some extensions
  ☆68Updated 4 years ago
• righettod / burp-piper-custom-scripts
  Custom scripts for the PIPER Burp extensions.
  ☆97Updated last year