Alternatives and similar repositories for wstg

Users that are interested in wstg are comparing it to the libraries listed below

• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆66Updated 3 years ago
• ozguralp / synackapi
  ☆61Updated 11 months ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• michael1026 / trashcompactor
  ☆67Updated 2 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆166Updated last year
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆98Updated 2 years ago
• detectify / cs-challenge
  Detectify Crowdsource Challenge
  ☆69Updated 3 years ago
• BonJarber / fresh-resolvers
  List of fresh DNS resolvers updated daily
  ☆108Updated 2 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆121Updated 4 years ago
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆210Updated last year
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆65Updated 4 years ago
• honoki / bbrf-dashboard
  ☆38Updated 5 months ago
• pry0cc / tew
  A quick ‘n dirty nmap parser written in Golang to convert nmap xml to IP:Port notation.
  ☆128Updated last year
• yeswehack / xsstools
  xss development frameworks, with the goal of making payload writing easier.
  ☆143Updated 11 months ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Updated 4 years ago
• bonino97 / LemonBooster-v2
  Reestructured LemonBooster.
  ☆47Updated 11 months ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆53Updated 2 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆62Updated last year
• Healdb / Elevate
  Horizontal Domain Discovery
  ☆76Updated 2 years ago
• ignis-sec / puff
  Clientside vulnerability / reflected xss fuzzer
  ☆150Updated last year
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆211Updated 3 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆85Updated 2 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 3 years ago
• Static-Flow / RepeaterSearch
  This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…
  ☆79Updated last year
• mrofisr / gf-patterns
  A collection of useful grep patterns and tools by Tomnomnom for extracting specific values from text.
  ☆45Updated 3 months ago
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆90Updated 3 years ago
• daxAKAhackerman / XSS-Catcher
  A blind XSS detection and XSS data capture framework
  ☆171Updated last week
• ghostlulzhacks / s3brute
  s3 brute force tool
  ☆44Updated 4 years ago
• bamhm182 / SynackAPI
  A Python Library designed to facilitate interaction with Synack's undocumented API endpoints
  ☆26Updated 4 months ago