Alternatives and similar repositories for femida:

Users that are interested in femida are comparing it to the libraries listed below

• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆221Updated 3 months ago
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆220Updated 3 years ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆234Updated 4 years ago
• c0rv4x / project-black
  Pentest/BugBounty progress control with scanning modules
  ☆283Updated 4 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆243Updated 2 years ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆152Updated 2 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆256Updated 2 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆212Updated 3 months ago
• zseano / JS-Scan
  a .js scanner, built in php. designed to scrape urls and other info
  ☆211Updated 7 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆197Updated 3 years ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆276Updated 3 years ago
• zseano / InputScanner
  ☆240Updated 6 years ago
• laconicwolf / burp-extensions
  A collection of scripts to extend Burp Suite
  ☆139Updated 5 years ago
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆302Updated 4 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆138Updated 5 years ago
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆296Updated 5 years ago
• Bo0oM / ParamPamPam
  ☆274Updated 2 years ago
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆342Updated 3 years ago
• tijme / angularjs-csti-scanner
  Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
  ☆307Updated 3 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆297Updated last year
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆189Updated 4 years ago
• SilverPoision / a-full-list-of-wordlists
  this contain the burp pack
  ☆206Updated 7 years ago
• Shashank-In / TravisLeaks
  A tool to find sensitive keys and passwords in Travis logs
  ☆141Updated 3 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆133Updated last year
• 0xspade / Automated-Scanner
  Trying to make automated recon for bug bounties
  ☆251Updated 3 years ago
• chrispetrou / FDsploit
  File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
  ☆267Updated 3 years ago
• root4loot / rescope
  Bugbounty scope tool
  ☆323Updated last month
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆309Updated last year
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆199Updated last year
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆191Updated 3 years ago