Alternatives and similar repositories for ssrf-sheriff

Users that are interested in ssrf-sheriff are comparing it to the libraries listed below

• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆304Updated 4 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆244Updated 2 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆301Updated 2 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆203Updated 2 years ago
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 4 years ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆159Updated 2 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆198Updated 4 years ago
• cablej / FileChangeMonitor
  Continuous monitoring for JavaScript files
  ☆220Updated 5 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆259Updated 2 years ago
• root4loot / rescope
  Bugbounty scope tool
  ☆330Updated 3 months ago
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆315Updated 2 years ago
• codingo / crithit
  Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…
  ☆211Updated 5 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆454Updated 6 years ago
• dark-warlord14 / JSScanner
  You can read the writeup on this script here
  ☆275Updated 4 years ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆191Updated 4 years ago
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆348Updated 3 years ago
• defparam / tiscripts
  Turbo Intruder Scripts
  ☆221Updated 5 years ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆276Updated 4 years ago
• ethicalhackingplayground / ssrf-tool
  ☆145Updated 2 years ago
• fransr / template-generator
  A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…
  ☆253Updated last year
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆236Updated 2 months ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆193Updated 3 years ago
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆253Updated 2 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆225Updated 8 months ago
• mazen160 / xless
  The Serverless Blind XSS App
  ☆340Updated last month
• defparam / h1passets
  List HackerOne private program assets
  ☆152Updated 4 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆156Updated 4 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆287Updated 5 months ago
• jaeles-project / jaeles-signatures
  Default signature for Jaeles Scanner
  ☆322Updated 3 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆409Updated 2 years ago