sysdig/wafer

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/sysdig/wafer)

sysdig / wafer

☆219

Alternatives and similar repositories for wafer

Users that are interested in wafer are comparing it to the libraries listed below

Sorting:

e1abrador / Burp-headerSnipper
View on GitHub
Burp extension used to snip any header from all the requests.
☆23Nov 12, 2023Updated 2 years ago
projectdiscovery / fuzzing-templates
View on GitHub
Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
☆90May 2, 2024Updated last year
xhzeem / toxicache
View on GitHub
Go scanner to find web cache poisoning vulnerabilities in a list of URLs
☆147Feb 21, 2024Updated 2 years ago
narfindustries / http-garden
View on GitHub
Differential testing framework for HTTP implementations
☆929Jan 21, 2026Updated last month
devanshbatham / headerpwn
View on GitHub
A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
☆358Dec 14, 2023Updated 2 years ago
devanshbatham / heaptruffle
View on GitHub
Mine URLs from Browser's Heap Snapshot for fun and profit
☆64Aug 9, 2023Updated 2 years ago
Moopinger / smugglefuzz
View on GitHub
A rapid HTTP downgrade smuggling scanner written in Go.
☆313May 16, 2024Updated last year
ayadim / Nuclei-bug-hunter
View on GitHub
i will upload more templates here to share with the comunity.
☆569Apr 17, 2024Updated last year
rix4uni / haktrailsfree
View on GitHub
Get 10k subdomains in securitytrails using cookie without apikey.
☆37Oct 23, 2025Updated 4 months ago
HernanRodriguez1 / SQLi_Sleeps
View on GitHub
☆124Aug 24, 2025Updated 6 months ago
Edr4 / XSS-Bypass-Filters
View on GitHub
☆587Aug 14, 2025Updated 7 months ago
Josue87 / roboxtractor
View on GitHub
Extract endpoints marked as disallow in robots files to generate wordlists.
☆58Mar 2, 2022Updated 4 years ago
vrechson / copy-to-bcheck
View on GitHub
BurpSuite extension to convert requests into bcheck scripts
☆33Jul 18, 2023Updated 2 years ago
Anof-cyber / ParaForge
View on GitHub
A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
☆143Jun 27, 2023Updated 2 years ago
edoardottt / pphack
View on GitHub
The Most Advanced Client-Side Prototype Pollution Scanner
☆247Feb 3, 2026Updated last month
bitquark / shortscan
View on GitHub
An IIS short filename enumeration tool
☆1,131Nov 25, 2024Updated last year
JoshMorrison99 / isXSS-Burp
View on GitHub
Passively check for XSS character encodings
☆18Mar 9, 2026Updated last week
assetnote / surf
View on GitHub
Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
☆754Dec 19, 2023Updated 2 years ago
root-tanishq / userefuzz
View on GitHub
User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
☆382May 19, 2023Updated 2 years ago
RevoltSecurities / SubProber
View on GitHub
Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. Th…
☆265Jul 6, 2025Updated 8 months ago
Th0h0 / autossrf
View on GitHub
Smart context-based SSRF vulnerability scanner.
☆360May 5, 2022Updated 3 years ago
SeifElsallamy / Blind-XSS-Manager
View on GitHub
Never forget where you inject.
☆299Aug 15, 2025Updated 7 months ago
0xacb / recollapse
View on GitHub
REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
☆1,297Aug 7, 2025Updated 7 months ago
0x4141414141 / Malware-Devlopment
View on GitHub
Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
☆39Dec 7, 2019Updated 6 years ago
BishopFox / jsluice
View on GitHub
Extract URLs, paths, secrets, and other interesting bits from JavaScript
☆1,782May 22, 2024Updated last year
BugBountyzip / Bambdas
View on GitHub
☆139Nov 9, 2024Updated last year
projectdiscovery / nuclei-ai-extension
View on GitHub
Nuclei AI - Browser Extension for Rapid Nuclei Template Generation
☆550Jan 19, 2026Updated 2 months ago
ethicalhackingplayground / pathbuster
View on GitHub
A path-normalization pentesting tool.
☆152Jan 22, 2026Updated last month
r0oth3x49 / ghauri
View on GitHub
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
☆3,948Oct 4, 2025Updated 5 months ago
assetnote / nowafpls
View on GitHub
Burp Plugin to Bypass WAFs through the insertion of Junk Data
☆1,428Jul 14, 2025Updated 8 months ago
doyensec / CSPTBurpExtension
View on GitHub
CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
☆162Jul 2, 2024Updated last year
anshumanpattnaik / http-request-smuggling
View on GitHub
HTTP Request Smuggling Detection Tool
☆536Dec 21, 2023Updated 2 years ago
xnl-h4ck3r / urless
View on GitHub
De-clutter a list of URLs
☆385Mar 8, 2026Updated last week
Anof-cyber / AlphaScan
View on GitHub
A BurpSuite extension for vulnerability Scanning
☆29Feb 16, 2024Updated 2 years ago
Escape-Technologies / graphql-wordlist
View on GitHub
The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
☆456Oct 3, 2023Updated 2 years ago
enkaskal / aws-waf-sqli-bypass-PoC
View on GitHub
Bypassing AWS WAF using a single ';'
☆40Aug 1, 2018Updated 7 years ago
0xKayala / fuzzing-templates
View on GitHub
Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
☆37Jul 27, 2025Updated 7 months ago
xnl-h4ck3r / GAP-Burp-Extension
View on GitHub
Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
☆1,503Jan 8, 2026Updated 2 months ago
irsdl / auraditor
View on GitHub
A Burp Suite extension for Lightning/Aura framework security testing with advanced action management, context editing, and comprehensive …
☆54Mar 2, 2026Updated 2 weeks ago