xss development frameworks, with the goal of making payload writing easier.
☆153Aug 7, 2024Updated last year
Alternatives and similar repositories for xsstools
Users that are interested in xsstools are comparing it to the libraries listed below
Sorting:
- PwnMachine is a self hosting solution based on docker aiming to provide an easy to use pwning station for bug hunters.☆324Jul 31, 2024Updated last year
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆642Jul 7, 2025Updated 7 months ago
- a tool that compiles a csv of all h1 program stats☆49Jul 2, 2023Updated 2 years ago
- DNS and Target HTTP History Local Storage and Search☆63Feb 14, 2021Updated 5 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆33Nov 8, 2021Updated 4 years ago
- ☆105Oct 18, 2020Updated 5 years ago
- A collection of scripts for bug-bounty related stuff☆39Sep 4, 2020Updated 5 years ago
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.☆1,291Aug 7, 2024Updated last year
- Prototype Pollution Scanner☆139Apr 11, 2021Updated 4 years ago
- automated web assets enumeration & scanning [DEPRECATED]☆288Mar 7, 2023Updated 2 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆189Aug 8, 2024Updated last year
- ☆12Jun 16, 2021Updated 4 years ago
- all manner of wordlists☆24Jan 19, 2022Updated 4 years ago
- ☆436Jun 1, 2021Updated 4 years ago
- Electron JS Browser To Find XSS Vulnerabilities Automatically☆747Mar 30, 2021Updated 4 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆952Dec 31, 2021Updated 4 years ago
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,524Jan 15, 2026Updated last month
- ☆299Jul 16, 2022Updated 3 years ago
- Turns any junk text into a usable wordlist for brute-forcing.☆227Mar 16, 2024Updated last year
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆279Feb 11, 2021Updated 5 years ago
- ☆213Jul 3, 2021Updated 4 years ago
- A repo for tools, utils, and wrappers that are to small to put in their own repo.☆23Mar 18, 2023Updated 2 years ago
- A tools for JavaScript Recon☆24Jul 25, 2020Updated 5 years ago
- Contextual Content Discovery Tool☆3,096Apr 29, 2024Updated last year
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆427Feb 20, 2026Updated last week
- An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.☆45Jan 22, 2025Updated last year
- Nuclei templates written by geeknik. Claude is my co-pilot. 🤖☆292Aug 8, 2025Updated 6 months ago
- Tool for making it easy to collect dns results from the CLI☆40Aug 14, 2024Updated last year
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Sep 6, 2021Updated 4 years ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆11Apr 9, 2021Updated 4 years ago
- Extract parameters/paths from urls☆17Aug 2, 2020Updated 5 years ago
- ☆694Jul 4, 2022Updated 3 years ago
- Complex payload encoder☆240Jan 20, 2024Updated 2 years ago
- Dump all available paths and/or endpoints on WADL file.☆98Nov 24, 2025Updated 3 months ago
- A tool to find redirection chains in multiple URLs☆78Jan 1, 2025Updated last year
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,039Aug 23, 2025Updated 6 months ago
- A fast & light web screenshot without headless browser but Chrome DevTools Protocol!☆185Updated this week
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆190Aug 11, 2022Updated 3 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆303Feb 12, 2023Updated 3 years ago