Alternatives and similar repositories for xsstools

Users that are interested in xsstools are comparing it to the libraries listed below

• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆219Updated 3 years ago
• michael1026 / trashcompactor
  ☆67Updated 2 years ago
• trufflesecurity / of-CORS
  ☆151Updated 2 years ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆99Updated 3 years ago
• detectify / cs-challenge
  Detectify Crowdsource Challenge
  ☆70Updated 3 years ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆66Updated 3 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆131Updated 4 years ago
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆63Updated 5 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆166Updated last year
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆94Updated 3 years ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆183Updated 3 years ago
• BonJarber / fresh-resolvers
  List of fresh DNS resolvers updated daily
  ☆108Updated 2 years ago
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆212Updated last year
• Static-Flow / RepeaterSearch
  This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…
  ☆79Updated last year
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆127Updated 4 years ago
• daffainfo / Key-Checker
  Go scripts for checking API key / access token validity
  ☆216Updated 4 years ago
• ameenmaali / wordlistgen
  Quickly generate context-specific wordlists for content discovery from lists of URLs or paths
  ☆230Updated 3 years ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆111Updated last year
• daxAKAhackerman / XSS-Catcher
  A blind XSS detection and XSS data capture framework
  ☆172Updated last week
• brevityinmotion / brevityrecon
  ☆69Updated 3 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆195Updated last year
• pry0cc / tew
  A quick ‘n dirty nmap parser written in Golang to convert nmap xml to IP:Port notation.
  ☆128Updated last year
• obheda12 / MoneyScope
  A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities
  ☆105Updated 4 years ago
• rammarj / csrf-poc-creator
  A Burp Suite extension for CSRF proof of concepts.
  ☆52Updated 2 years ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Updated 4 years ago
• honoki / bbrf-dashboard
  ☆40Updated 2 months ago
• Josue87 / AnalyticsRelationships
  Get related domains / subdomains by looking at Google Analytics IDs
  ☆250Updated 3 years ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆87Updated 11 months ago
• yavolo / eventlistener-xss-recon
  ☆146Updated 2 years ago