Alternatives and similar repositories for TIWAP

Users that are interested in TIWAP are comparing it to the libraries listed below

• Jewel591 / xssmap
  XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
  ☆265Updated 4 years ago
• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆243Updated this week
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆183Updated 4 years ago
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆203Updated last year
• API-Security / APISandbox
  Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.
  ☆406Updated 2 years ago
• zorox0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆173Updated 8 months ago
• DonatoReis / Secbuild
  An automation tool to install the most popular tools for bug bounty or pentesting.
  ☆123Updated 10 months ago
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆116Updated 3 years ago
• agrawalsmart7 / scodescanner
  SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.
  ☆161Updated last year
• PortSwigger / sqli-py
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆91Updated last month
• shadowsock5 / Poc
  PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus
  ☆173Updated 2 months ago
• Al1ex / Awesome-Pentest
  Collection of penetration testing tools
  ☆82Updated 4 years ago
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆273Updated 5 months ago
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆234Updated 3 years ago
• silentsignal / burp-text4shell
  Text4Shell scanner for Burp Suite
  ☆191Updated 2 years ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆251Updated 6 months ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆134Updated 2 weeks ago
• RedSection / pFuzz
  pFuzz helps us to bypass web application firewall by using different methods at the same time.
  ☆159Updated 4 years ago
• ARPSyndicate / kenzer-templates
  essential templates for kenzer [DEPRECATED]
  ☆116Updated 2 years ago
• l0ggg / VMware_vCenter
  VMware vCenter 7.0.2.00100 unauth Arbitrary File Read + SSRF + Reflected XSS
  ☆221Updated 3 years ago
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆586Updated 4 years ago
• Rvn0xsy / red-tldr
  red-tldr is a lightweight text search tool, which is used to help red team staff quickly find the commands and key points they want to ex…
  ☆236Updated 2 years ago
• devploit / XORpass
  Encoder to bypass WAF filters using XOR operations.
  ☆254Updated 2 years ago
• NotSoSecure / SerializedPayloadGenerator
  ☆124Updated 2 years ago
• zapstiko / wordlists
  All Type of Payloads
  ☆136Updated last year
• woodpecker-appstore / log4j-payload-generator
  Log4j jndi injects the Payload generator
  ☆487Updated 3 years ago
• RedTeamPentesting / CVE-2020-13935
  Exploit for WebSocket Vulnerability in Apache Tomcat
  ☆168Updated 4 years ago
• LandGrey / CVE-2019-7609
  exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts
  ☆163Updated last year
• theLSA / burp-sensitive-param-extractor
  burpsuite extension for check and extract sensitive request parameter
  ☆113Updated 4 years ago
• RapidDNS / Afuzz
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆304Updated last year