Alternatives and similar repositories for jsmug

Users that are interested in jsmug are comparing it to the libraries listed below

• 0xless / slip
  Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war,…
  ☆112Updated 6 months ago
• ambionics / lightyear
  lightyear is a tool to dump files in tedious (blind) conditions using PHP filters
  ☆108Updated 5 months ago
• assetnote / exploits
  Repository to store exploits created by Assetnotes Security Research team
  ☆179Updated 2 years ago
• ambionics / scalpel
  Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
  ☆66Updated last year
• kleiton0x00 / Todesstern
  A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities
  ☆67Updated last year
• bahruzjabiyev / gudifu-fuzzer
  Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
  ☆20Updated last year
• c53elyas / CVE-2023-33733
  CVE-2023-33733 reportlab RCE
  ☆118Updated 2 years ago
• hackvertor / shadow-repeater
  ☆41Updated 3 weeks ago
• PortSwigger / splitting-the-email-atom
  ☆90Updated last week
• msrkp / MXSS
  Awesome MXSS ??
  ☆56Updated last year
• pruzko / hakuin
  A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.
  ☆137Updated 6 months ago
• p4k03n4t0r / http-request-smuggling
  Blog about HTTP Request Smuggling, including a demo application.
  ☆33Updated 3 years ago
• m4ll0k / autobreakpointer
  Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code
  ☆94Updated 11 months ago
• Philesiv / XSLeaker
  Searcher for cross-site leaks (XS-Leaks)
  ☆83Updated 2 years ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆100Updated 3 months ago
• Slonser / hui
  HTML Universal Identifier
  ☆65Updated 11 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆310Updated last year
• CoreyD97 / Burp-Montoya-Utilities
  A collection of utilities for building extensions using Burp's Montoya API
  ☆52Updated last month
• doyensec / protoburp
  Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages
  ☆36Updated 2 years ago
• BishopFox / CVE-2023-27997-check
  Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing
  ☆134Updated last year
• binganao / CVE-2024-23897
  ☆100Updated last year
• rs-loves-bugs / burp-browser-profiles
  Make better use of the embedded browser that comes by default with Burp
  ☆45Updated last year
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆55Updated 2 years ago
• PortSwigger / server-side-prototype-pollution
  ☆42Updated 2 years ago
• haile01 / perl_spreadsheet_excel_rce_poc
  POC for RCE vulnerability in ParseExcel library, and ParseXLSX too, as a depending library
  ☆17Updated last year
• h4x0r-dz / CVE-2024-21893.py
  CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure
  ☆96Updated last year
• TecR0c / DoubleTrouble
  This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…
  ☆46Updated last year
• NightBlood0 / CVE-2025-4123
  Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF
  ☆51Updated 4 months ago
• BishopFox / ysoserial-bf
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆32Updated last year
• bytehope / wwe
  ☆25Updated 9 months ago