Alternatives and similar repositories for wafer:

Users that are interested in wafer are comparing it to the libraries listed below

• 0x999-x / jsluicepp
  jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
  ☆264Updated 11 months ago
• ngalongc / AuthzAI
  ☆164Updated 4 months ago
• devanshbatham / headerpwn
  A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers
  ☆331Updated last year
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆156Updated 4 months ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆339Updated 3 months ago
• rs-loves-bugs / xsshunter
  ☆168Updated last month
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆153Updated 3 months ago
• xnl-h4ck3r / urless
  De-clutter a list of URLs
  ☆327Updated 3 months ago
• SAPT01 / HBSQLI
  Automated Tool for Testing Header Based Blind SQL Injection
  ☆272Updated last year
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆132Updated 8 months ago
• xnl-h4ck3r / knoxnl
  This is a python wrapper around the amazing KNOXSS API by Brute Logic
  ☆250Updated this week
• midoxnet / mapperplus
  MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
  ☆168Updated 5 months ago
• az7rb / crt.sh
  Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.
  ☆211Updated 6 months ago
• root-tanishq / userefuzz
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆381Updated last year
• trickest / mkpath
  Make URL path combinations using a wordlist
  ☆173Updated last year
• attacksurge / ax
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…
  ☆362Updated last week
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆253Updated 9 months ago
• RikunjSindhwad / Task-Ninja
  Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!
  ☆147Updated 3 months ago
• devanshbatham / rayder
  A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows
  ☆283Updated last year
• shreyaschavhan / advanced-sql-injection-for-awae
  ☆194Updated last month
• TheGetch / Burp-Suite-Pro-Scan-Profiles
  Custom scan profiles for use with Burp Suite Pro
  ☆137Updated 11 months ago
• xhzeem / toxicache
  Go scanner to find web cache poisoning vulnerabilities in a list of URLs
  ☆135Updated last year
• Proviesec / PSFuzz
  Proviesec Fuzz Scanner - dir/path web scanner
  ☆99Updated 2 months ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆133Updated 3 months ago
• hansmach1ne / LFImap
  Local File Inclusion discovery and exploitation tool
  ☆291Updated 2 months ago
• Net-hunter121 / API-Wordlist
  ☆236Updated 3 years ago
• edoardottt / pphack
  The Most Advanced Client-Side Prototype Pollution Scanner
  ☆171Updated this week
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆276Updated 3 months ago
• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆234Updated last year
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆106Updated 2 months ago