Alternatives and similar repositories for cstc

Users that are interested in cstc are comparing it to the libraries listed below

• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆162Updated 7 months ago
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆131Updated 2 years ago
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆261Updated 3 months ago
• wallarm / jwt-heartbreaker
  The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources
  ☆132Updated 4 years ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.
  ☆267Updated 4 months ago
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆174Updated 7 months ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆259Updated 2 years ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆266Updated 2 years ago
• nccgroup / CollaboratorPlusPlus
  ☆148Updated 3 years ago
• trickest / find-gh-poc
  Find CVE PoCs on GitHub
  ☆147Updated last year
• intruder-io / guidtool
  A tool to inspect and attack version 1 GUIDs
  ☆224Updated 2 years ago
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆192Updated 10 months ago
• srini0x00 / dvta
  Damn Vulnerable Thick Client App developed in C# .NET
  ☆155Updated last year
• elttam / semgrep-rules
  ☆196Updated 7 months ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆87Updated 8 months ago
• trufflesecurity / of-CORS
  ☆152Updated last year
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆182Updated 2 years ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆160Updated 6 months ago
• The-Login / DNS-Reset-Checker
  Tools to assess the DNS security of web applications
  ☆128Updated 2 years ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆95Updated last year
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆198Updated 3 weeks ago
• sansatart / scrapts
  Scrapts Scrapts Scrapts
  ☆238Updated last year
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆370Updated 2 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆127Updated last year
• CoreyD97 / Stepper
  A natural evolution of Burp Suite's Repeater tool
  ☆199Updated last year
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆312Updated 7 months ago
• doyensec / wsrepl
  WebSocket REPL for pentesters
  ☆220Updated 11 months ago
• carlospolop / bf-aws-permissions
  ☆86Updated 2 months ago
• deletehead / awae_oswe_prep
  Stuff done in preparation for AWAE course and OSWE certification
  ☆152Updated 4 years ago
• qtc-de / beanshooter
  JMX enumeration and attacking tool.
  ☆443Updated 3 months ago