Alternatives and similar repositories for wafer

Users that are interested in wafer are comparing it to the libraries listed below

• 0x999-x / jsluicepp
  jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
  ☆274Updated last year
• lauritzh / domscan
  Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.
  ☆240Updated 3 months ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆140Updated 11 months ago
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆308Updated 6 months ago
• midoxnet / mapperplus
  MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
  ☆169Updated 7 months ago
• devanshbatham / rayder
  A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows
  ☆291Updated last year
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆356Updated 3 weeks ago
• projectdiscovery / tldfinder
  A streamlined tool for discovering private TLDs for security research.
  ☆207Updated this week
• rs-loves-bugs / xsshunter
  ☆172Updated 3 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆255Updated last year
• ngalongc / AuthzAI
  ☆176Updated 7 months ago
• SAPT01 / HBSQLI
  Automated Tool for Testing Header Based Blind SQL Injection
  ☆280Updated last year
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆119Updated 2 months ago
• root-tanishq / userefuzz
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆382Updated 2 years ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆159Updated 6 months ago
• xnl-h4ck3r / urless
  De-clutter a list of URLs
  ☆340Updated 6 months ago
• 0xAnuj / Blinks
  Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…
  ☆134Updated 5 months ago
• BugBountyzip / Bambdas
  ☆133Updated 6 months ago
• nullenc0de / gofuzz
  ☆169Updated this week
• devanshbatham / headerpwn
  A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
  ☆341Updated last year
• xhzeem / toxicache
  Go scanner to find web cache poisoning vulnerabilities in a list of URLs
  ☆139Updated last year
• DevSecOpsDocs / nuclearpond
  Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.
  ☆180Updated last year
• hansmach1ne / LFImap
  Local File Inclusion discovery and exploitation tool
  ☆310Updated 5 months ago
• Net-hunter121 / API-Wordlist
  ☆242Updated 4 years ago
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆655Updated last month
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆159Updated 6 months ago
• jhaddix / awsScrape
  A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
  ☆232Updated last year
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆384Updated this week
• sw33tLie / uff
  unleashed ffuf
  ☆199Updated last week
• az7rb / crt.sh
  Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.
  ☆222Updated 9 months ago