Alternatives and similar repositories for xss-payloads

Users that are interested in xss-payloads are comparing it to the libraries listed below

• Stahlz / JQShell
  A weaponized version of CVE-2018-9206
  ☆62Updated 7 years ago
• darkr4y / pentest-script
  scripts used in my pentest work.
  ☆44Updated 10 years ago
• oways / SA-CORE-2018-004
  SA-CORE-2018-004 POC #drupalgeddon3
  ☆41Updated 7 years ago
• n4xh4ck5 / N4xD0rk
  Listing subdomains about a main domain
  ☆58Updated 7 years ago
• NickstaDB / PoC
  Repo for proof of concept exploits and tools.
  ☆56Updated 5 years ago
• milo2012 / CVE-2018-0296
  Test CVE-2018-0296 and extract usernames
  ☆106Updated 7 years ago
• sirpsycho / firecall
  Automate SSH communication with firewalls, switches, etc.
  ☆27Updated 7 years ago
• ecbftw / poc
  A collection of published exploits and proof-of-concept code.
  ☆21Updated 8 years ago
• 1337g / CVE-2017-10271
  CVE-2017-10271 WEBLOGIC RCE (TESTED)
  ☆39Updated 8 years ago
• viperbluff / WAF_buster
  Disrupt WAF by abusing SSL/TLS Ciphers
  ☆48Updated 7 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆48Updated 3 years ago
• floyd-fuh / burp-HttpFuzzer
  Burp plugin to do random fuzzing of HTTP requests
  ☆33Updated 8 years ago
• pwntester / XStreamServer
  RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler
  ☆20Updated 12 years ago
• darkerego / pysslShells
  Finally, reverse/bind shells written in python, encrypted with ssl!
  ☆39Updated 6 years ago
• 0ang3el / Hibernate-Injection-Study
  Study about HQL injection exploitation.
  ☆51Updated 9 years ago
• inode- / AttackSelector
  Burp Suite Attack Selector Plugin
  ☆60Updated 8 years ago
• matthewdfuller / intellifuzz-xss
  An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
  ☆42Updated 13 years ago
• issue2report / issue2report
  Generate pentest reports based on github issues.
  ☆16Updated 3 years ago
• Techlord-RCE / dns-rebind-toolkit
  A front-end JavaScript toolkit for creating DNS rebinding attacks.
  ☆45Updated 7 years ago
• hlldz / wildPwn
  Brute forcer and shell deployer for WildFly
  ☆101Updated 7 years ago
• silentsignal / burp-collab-gw
  Simple socket-based gateway to the Burp Collaborator
  ☆34Updated 9 years ago
• armourbird / csf
  ArmourBird CSF - Container Security Framework
  ☆44Updated 3 years ago
• SECFORCE / sftp-exploit
  OpenSSH <=6.6 SFTP misconfiguration universal exploit
  ☆27Updated 7 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 7 years ago
• vah13 / SAP_vulnerabilities
  DoS PoC's for SAP products
  ☆51Updated 8 years ago
• menzow / sn1per-docker
  Dockerized version of Sn1per (https://github.com/1N3/Sn1per)
  ☆60Updated 7 years ago
• EnableSecurity / Webapp-Exploit-Payloads
  a collection of payloads for common webapps
  ☆72Updated 12 years ago
• roo7break / serialator
  Python script to exploit CVE-2015-4852.
  ☆31Updated 9 years ago
• n00py / Hwacha
  Deploy payloads to *Nix systems en masse
  ☆108Updated 5 years ago
• DanMcInerney / SMB-reverse-brute
  Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords
  ☆51Updated 8 years ago