vavkamil/XSSwagger external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

vavkamil/XSSwagger

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/vavkamil/XSSwagger)

Close

vavkamil / XSSwaggerView on GitHubMore

• External links
• Readme badge

A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks

☆60Aug 30, 2019Updated 6 years ago

Alternatives and similar repositories for XSSwagger

Users that are interested in XSSwagger are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• EliNaduyev / XSS-Scanner

  View on GitHub
  Following OWASP TOP 10 (the top ten most critical web application security risk) I decided to build an XSS Scanner.
  ☆12Dec 12, 2022Updated 3 years ago
• Damian89 / extended-ssrf-search

  View on GitHub
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆277Feb 11, 2021Updated 5 years ago
• MichaelStott / CRLF-Injection-Scanner

  View on GitHub
  Command line tool for testing CRLF injection on a list of domains.
  ☆163Apr 14, 2024Updated last year
• dxa4481 / XSSOauthPersistence

  View on GitHub
  Maintaining account persistence via XSS and Oauth
  ☆78Jan 7, 2019Updated 7 years ago
• wish-i-was / femida

  View on GitHub
  Automated blind-xss search for Burp Suite
  ☆285Oct 10, 2019Updated 6 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• si9int / gDork

  View on GitHub
  A Mozilla Firefox extension which allows quick access to your google-dorking result
  ☆19Jun 18, 2020Updated 5 years ago
• ghostlulzhacks / waybackSqliScanner

  View on GitHub
  ☆200Jun 6, 2019Updated 6 years ago
• Damian89 / extended-xss-search

  View on GitHub
  A better version of my xssfinder tool - scans for different types of xss on a list of urls.
  ☆187Aug 3, 2019Updated 6 years ago
• j3ssie / str-replace

  View on GitHub
  Simple tools to handle string and generate subdomain permutations
  ☆15Jun 8, 2022Updated 3 years ago
• ni8walk3r / JWT-Exploitation

  View on GitHub
  Collection of different exploitation scenarios of JWT.
  ☆21Jul 23, 2021Updated 4 years ago
• InitRoot / BurpSQLTruncSanner

  View on GitHub
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆64Apr 17, 2020Updated 5 years ago
• pingidentity / AuraIntruder

  View on GitHub
  ☆20Sep 6, 2023Updated 2 years ago
• arbazkiraak / LinksDumper

  View on GitHub
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆93Aug 27, 2019Updated 6 years ago
• SpiderMate / B-XSSRF

  View on GitHub
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆338Aug 23, 2019Updated 6 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• hahwul / can-i-protect-xss

  View on GitHub
  Everything about xss protection technology
  ☆14Oct 22, 2019Updated 6 years ago
• reewardius / bugbounty-dorks

  View on GitHub
  ☆11Jun 19, 2024Updated last year
• hisxo / Wordlist

  View on GitHub
  Wordlists for Bug Bounty
  ☆23Aug 18, 2019Updated 6 years ago
• RandomRobbieBF / service-now

  View on GitHub
  Service-Now Article Bruteforcer
  ☆16Jun 5, 2020Updated 5 years ago
• avlidienbrunn / bountydash

  View on GitHub
  BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.
  ☆162Apr 24, 2025Updated 11 months ago
• gwen001 / BBstats

  View on GitHub
  Bug Bounty statistics tool.
  ☆33Nov 17, 2022Updated 3 years ago
• defparam / h1passets

  View on GitHub
  List HackerOne private program assets
  ☆155Jun 24, 2021Updated 4 years ago
• wrvenkat / burp-multistep-csrf-poc

  View on GitHub
  Burp extension to generate multi-step CSRF POC.
  ☆31Sep 23, 2019Updated 6 years ago
• allyomalley / LiveTargetsFinder

  View on GitHub
  Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…
  ☆367Jul 23, 2022Updated 3 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• redhuntlabs / BurpSuite-Asset_History

  View on GitHub
  ☆36Jan 22, 2025Updated last year
• melbadry9 / SSLEnum

  View on GitHub
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆42Nov 10, 2025Updated 5 months ago
• udit-thakkur / AdvancedKeyHacks

  View on GitHub
  API Key/Token Exploitation Made easy.
  ☆93Jun 11, 2021Updated 4 years ago
• BitTheByte / BitBlinder

  View on GitHub
  BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
  ☆120Dec 23, 2025Updated 3 months ago
• Lekssays / kibanarec

  View on GitHub
  A Tool to Extract Open Kibana Instances on Internet and Map them to their Corresponding Organizations for Bug Bounty.
  ☆16Sep 7, 2019Updated 6 years ago
• xawdxawdx / sentrySSRF

  View on GitHub
  Tool to searching sentry config on page or in javascript files and check blind SSRF
  ☆71May 28, 2024Updated last year
• dariusztytko / jwt-key-id-injector

  View on GitHub
  Simple python script to check against hypothetical JWT vulnerability.
  ☆51Nov 29, 2020Updated 5 years ago
• devanshbatham / ArchiveFuzz

  View on GitHub
  Hunt down the secrets from the WebArchives for Fun and Profit
  ☆163Dec 8, 2022Updated 3 years ago
• devanshbatham / OpenRedireX

  View on GitHub
  A fuzzer for detecting open redirect vulnerabilities
  ☆784Jul 1, 2024Updated last year
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• kosmosec / proto-find

  View on GitHub
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆65Jan 9, 2024Updated 2 years ago
• vavkamil / BBClip

  View on GitHub
  Bug Bounty Clipboard
  ☆17Nov 6, 2019Updated 6 years ago
• profmoriarity / rexsser

  View on GitHub
  This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
  ☆75Nov 5, 2020Updated 5 years ago
• random-robbie / All-in-One-WP-Migration-Backup-Finder

  View on GitHub
  All-in-One WP Migration-Backup-Finder
  ☆15Nov 5, 2025Updated 5 months ago
• rix4uni / uforall

  View on GitHub
  uforall is a fast url crawler this tool crawl all URLs number of different sources, alienvault,WayBackMachine,urlscan,commoncrawl
  ☆52Nov 3, 2025Updated 5 months ago
• In3tinct / See-SURF

  View on GitHub
  Security tool to find potential vulnerable Server Side Request Forgery (SSRF) parameters.
  ☆360Feb 13, 2026Updated last month
• harleo / asnip

  View on GitHub
  ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
  ☆220Apr 10, 2022Updated 4 years ago