Alternatives and similar repositories for jsmug

Users that are interested in jsmug are comparing it to the libraries listed below

• 0xless / slip
  Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…
  ☆103Updated last month
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆100Updated 2 weeks ago
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆63Updated last year
• assetnote / exploits
  Repository to store exploits created by Assetnotes Security Research team
  ☆179Updated last year
• msrkp / MXSS
  Awesome MXSS ??
  ☆52Updated 9 months ago
• hackvertor / shadow-repeater
  ☆37Updated 3 weeks ago
• watchtowrlabs / CVE-2024-27130
  PoC for CVE-2024-27130
  ☆35Updated last year
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆95Updated last year
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆82Updated 2 years ago
• kleiton0x00 / Todesstern
  A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities
  ☆67Updated last year
• Slonser / hui
  HTML Universal Identifier
  ☆67Updated 6 months ago
• m4ll0k / autobreakpointer
  Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code
  ☆90Updated 6 months ago
• c53elyas / CVE-2023-33733
  CVE-2023-33733 reportlab RCE
  ☆119Updated last year
• Moopinger / CLZero
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆87Updated last year
• pruzko / hakuin
  A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.
  ☆138Updated last month
• binganao / CVE-2024-23897
  ☆99Updated last year
• BishopFox / CVE-2023-27997-check
  Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing
  ☆134Updated last year
• NightBloodz / CVE-2025-4123
  Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF
  ☆43Updated last month
• h4x0r-dz / CVE-2024-21893.py
  CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure
  ☆90Updated last year
• UGF0aWVudF9aZXJv / Atlassian-Jira-pentesting
  ☆45Updated 5 months ago
• cfreal / ten
  A (small) web exploit framework
  ☆92Updated last week
• haile01 / perl_spreadsheet_excel_rce_poc
  POC for RCE vulnerability in ParseExcel library, and ParseXLSX too, as a depending library
  ☆17Updated 9 months ago
• PortSwigger / splitting-the-email-atom
  ☆81Updated 2 weeks ago
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆50Updated last year
• ivision-research / burpscript
  ☆61Updated 2 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆302Updated last year
• sinsinology / CVE-2024-4358
  Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)
  ☆77Updated last year
• synacktiv / laravel-crypto-killer
  A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.
  ☆68Updated 2 weeks ago
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆43Updated last year
• bahruzjabiyev / gudifu-fuzzer
  Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
  ☆17Updated last year