Alternatives and similar repositories for TIWAP

Users that are interested in TIWAP are comparing it to the libraries listed below

• ARPSyndicate / cve-scores
  EPSS & VEDAS Score Aggregator for CVEs
  ☆251Updated this week
• Jewel591 / xssmap
  XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
  ☆267Updated 5 years ago
• moeinfatehi / xss_vulnerability_challenges
  this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
  ☆117Updated 3 years ago
• API-Security / APISandbox
  Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.
  ☆412Updated 3 years ago
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆238Updated 3 years ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆183Updated 4 years ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆232Updated last month
• PortSwigger / sqli-py
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆94Updated 4 months ago
• shadowsock5 / Poc
  PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus
  ☆177Updated this week
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆206Updated last year
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆275Updated 8 months ago
• woodpecker-appstore / log4j-payload-generator
  Log4j jndi injects the Payload generator
  ☆489Updated 3 years ago
• Al1ex / Awesome-Pentest
  Collection of penetration testing tools
  ☆83Updated 4 years ago
• NotSoSecure / SerializedPayloadGenerator
  ☆130Updated last week
• oldkingcone / slopShell
  the only php webshell you need.
  ☆228Updated 6 months ago
• agrawalsmart7 / scodescanner
  SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.
  ☆163Updated 2 years ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆259Updated 9 months ago
• volkandindar / agartha
  A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
  ☆378Updated this week
• Moaaz-0x / chaospy
  Small Tool written based on chaos from projectdiscovery.io
  ☆174Updated 11 months ago
• TheGejr / SpringShell
  Spring4Shell - Spring Core RCE - CVE-2022-22965
  ☆129Updated 3 years ago
• l0ggg / VMware_vCenter
  VMware vCenter 7.0.2.00100 unauth Arbitrary File Read + SSRF + Reflected XSS
  ☆221Updated 3 years ago
• devploit / XORpass
  Encoder to bypass WAF filters using XOR operations.
  ☆254Updated 3 years ago
• tkmru / lazyCSRF
  A more useful CSRF PoC generator on Burp Suite
  ☆85Updated 3 years ago
• RapidDNS / Afuzz
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆303Updated 2 years ago
• silentsignal / burp-text4shell
  Text4Shell scanner for Burp Suite
  ☆191Updated 2 years ago
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆175Updated 6 years ago
• DonatoReis / Secbuild
  An automation tool to install the most popular tools for bug bounty or pentesting.
  ☆124Updated 3 weeks ago
• RedSection / pFuzz
  pFuzz helps us to bypass web application firewall by using different methods at the same time.
  ☆161Updated 4 years ago
• aeyesec / CVE-2022-34265
  PoC for CVE-2022-34265 (Django)
  ☆124Updated 3 years ago
• jas502n / Grafana-CVE-2021-43798
  Grafana Unauthorized arbitrary file reading vulnerability
  ☆365Updated 2 years ago