vavkamil/XSSwagger

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/vavkamil/XSSwagger)

vavkamil / XSSwagger

A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks

☆60

Alternatives and similar repositories for XSSwagger

Users that are interested in XSSwagger are comparing it to the libraries listed below

Sorting:

EliNaduyev / XSS-Scanner
View on GitHub
Following OWASP TOP 10 (the top ten most critical web application security risk) I decided to build an XSS Scanner.
☆12Dec 12, 2022Updated 3 years ago
si9int / gDork
View on GitHub
A Mozilla Firefox extension which allows quick access to your google-dorking result
☆19Jun 18, 2020Updated 5 years ago
MichaelStott / CRLF-Injection-Scanner
View on GitHub
Command line tool for testing CRLF injection on a list of domains.
☆165Apr 14, 2024Updated last year
Damian89 / extended-ssrf-search
View on GitHub
Smart ssrf scanner using different methods like parameter brute forcing in post and get...
☆279Feb 11, 2021Updated 5 years ago
ni8walk3r / JWT-Exploitation
View on GitHub
Collection of different exploitation scenarios of JWT.
☆21Jul 23, 2021Updated 4 years ago
j3ssie / str-replace
View on GitHub
Simple tools to handle string and generate subdomain permutations
☆15Jun 8, 2022Updated 3 years ago
hisxo / Wordlist
View on GitHub
Wordlists for Bug Bounty
☆23Aug 18, 2019Updated 6 years ago
wish-i-was / femida
View on GitHub
Automated blind-xss search for Burp Suite
☆285Oct 10, 2019Updated 6 years ago
gwen001 / BBstats
View on GitHub
Bug Bounty statistics tool.
☆33Nov 17, 2022Updated 3 years ago
hahwul / can-i-protect-xss
View on GitHub
Everything about xss protection technology
☆14Oct 22, 2019Updated 6 years ago
roberreigada / wayback.sh
View on GitHub
Bash script to extract data from the Waybackmachine
☆11Mar 15, 2021Updated 4 years ago
Damian89 / extended-xss-search
View on GitHub
A better version of my xssfinder tool - scans for different types of xss on a list of urls.
☆187Aug 3, 2019Updated 6 years ago
random-robbie / All-in-One-WP-Migration-Backup-Finder
View on GitHub
All-in-One WP Migration-Backup-Finder
☆15Nov 5, 2025Updated 3 months ago
jthack / toslack
View on GitHub
stdin writes to slack
☆14Feb 8, 2020Updated 6 years ago
pingidentity / AuraIntruder
View on GitHub
☆20Sep 6, 2023Updated 2 years ago
ghostlulzhacks / waybackSqliScanner
View on GitHub
☆200Jun 6, 2019Updated 6 years ago
wrvenkat / burp-multistep-csrf-poc
View on GitHub
Burp extension to generate multi-step CSRF POC.
☆31Sep 23, 2019Updated 6 years ago
udit-thakkur / AdvancedKeyHacks
View on GitHub
API Key/Token Exploitation Made easy.
☆93Jun 11, 2021Updated 4 years ago
vavkamil / BBClip
View on GitHub
Bug Bounty Clipboard
☆17Nov 6, 2019Updated 6 years ago
rix4uni / uforall
View on GitHub
uforall is a fast url crawler this tool crawl all URLs number of different sources, alienvault,WayBackMachine,urlscan,commoncrawl
☆52Nov 3, 2025Updated 4 months ago
InitRoot / BurpSQLTruncSanner
View on GitHub
Messy BurpSuite plugin for SQL Truncation vulnerabilities.
☆63Apr 17, 2020Updated 5 years ago
melbadry9 / SSLEnum
View on GitHub
Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
☆42Nov 10, 2025Updated 3 months ago
xawdxawdx / sentrySSRF
View on GitHub
Tool to searching sentry config on page or in javascript files and check blind SSRF
☆71May 28, 2024Updated last year
Sajibekanti / Bug_Bounty_List
View on GitHub
Day by day Lots of Newbie Come into bug Bounty They ask Social Site about Bug Bounty Site, So That's why I open My Hunted All Site.
☆32Sep 20, 2020Updated 5 years ago
arbazkiraak / LinksDumper
View on GitHub
Extract (links/possible endpoints) from responses & filter them via decoding/sorting
☆93Aug 27, 2019Updated 6 years ago
avlidienbrunn / bountydash
View on GitHub
BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.
☆163Apr 24, 2025Updated 10 months ago
devanshbatham / ArchiveFuzz
View on GitHub
Hunt down the secrets from the WebArchives for Fun and Profit
☆163Dec 8, 2022Updated 3 years ago
dxa4481 / XSSOauthPersistence
View on GitHub
Maintaining account persistence via XSS and Oauth
☆77Jan 7, 2019Updated 7 years ago
RandomRobbieBF / service-now
View on GitHub
Service-Now Article Bruteforcer
☆16Jun 5, 2020Updated 5 years ago
In3tinct / See-SURF
View on GitHub
Security tool (now AI powered 🤖) to find potential vulnerable Server Side Request Forgery (SSRF) parameters.
☆355Feb 13, 2026Updated 2 weeks ago
defparam / h1passets
View on GitHub
List HackerOne private program assets
☆154Jun 24, 2021Updated 4 years ago
harleo / asnip
View on GitHub
ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
☆220Apr 10, 2022Updated 3 years ago
redhuntlabs / BurpSuite-Asset_History
View on GitHub
☆36Jan 22, 2025Updated last year
SpiderMate / B-XSSRF
View on GitHub
Toolkit to detect and keep track on Blind XSS, XXE & SSRF
☆293Aug 23, 2019Updated 6 years ago
devanshbatham / OpenRedireX
View on GitHub
A fuzzer for detecting open redirect vulnerabilities
☆782Jul 1, 2024Updated last year
agrawalsmart7 / autoRecon
View on GitHub
This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.
☆77Nov 10, 2019Updated 6 years ago
GainSec / GoldenNuggets-1
View on GitHub
Burp Extension for easily creating Wordlists
☆215Oct 5, 2021Updated 4 years ago
allyomalley / LiveTargetsFinder
View on GitHub
Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…
☆367Jul 23, 2022Updated 3 years ago
profmoriarity / rexsser
View on GitHub
This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
☆74Nov 5, 2020Updated 5 years ago