Alternatives and similar repositories for wstg

Users that are interested in wstg are comparing it to the libraries listed below

• michael1026 / trashcompactor
  ☆66Updated 3 years ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆67Updated 3 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• pry0cc / tew
  A quick ‘n dirty nmap parser written in Golang to convert nmap xml to IP:Port notation.
  ☆130Updated last year
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆82Updated 3 years ago
• ghostlulzhacks / s3brute
  s3 brute force tool
  ☆44Updated 4 years ago
• detectify / cs-challenge
  Detectify Crowdsource Challenge
  ☆72Updated 3 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆168Updated last year
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆210Updated last year
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆95Updated 5 years ago
• ozguralp / synackapi
  ☆61Updated last year
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆66Updated 5 years ago
• BonJarber / fresh-resolvers
  List of fresh DNS resolvers updated daily
  ☆108Updated 3 years ago
• eslam3kl / crtfinder
  Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search…
  ☆114Updated 4 years ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆99Updated 3 years ago
• pry0cc / subgen
  A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!
  ☆87Updated 5 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆136Updated 4 years ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆89Updated 3 weeks ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆62Updated 2 years ago
• BugBountyResources / targets
  A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…
  ☆99Updated 4 years ago
• codingo / dooked
  DNS and Target HTTP History Local Storage and Search
  ☆63Updated 4 years ago
• Healdb / Elevate
  Horizontal Domain Discovery
  ☆77Updated 2 years ago
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆65Updated 5 years ago
• honoki / bbrf-dashboard
  ☆43Updated 6 months ago
• six2dez / degoogle_hunter
  Simple fork from degoogle original project with bug hunting purposes
  ☆91Updated 3 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆54Updated 3 years ago
• yeswehack / xsstools
  xss development frameworks, with the goal of making payload writing easier.
  ☆152Updated last year
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆52Updated 4 years ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆219Updated 3 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆87Updated 3 years ago