791 Open source projects that are alternatives of or similar to Foxss-XSS-Penetration-Testing-Tool

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Powerful dork searcher and vulnerability scanner for windows platform

Simple and lightweight library that helps to validate SVG files in security manners.

Make XSS Great Again

一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能

Most advanced XSS scanner.

Botnet targeting Windows machines written entirely in Python & open source security project.

Awesome XSS stuff

A web application for generating custom XSS payloads

XSS'OR - Hack with JavaScript.

Tools used for Penetration testing / Red Teaming

Exploratory Testing Chrome Extension

WiFi Cracking Tool (Using Evil Twin Attack) With Some Modification. (Only For Legal Purposes)

🐳 Dockerized your Symfony project using a complete stack (Makefile, Docker-Compose, CI, bunch of quality insurance tools, tests ...) with a base according to up-to-date components and best practices.

Good info about DeepWeb and OSINT

VirtualBox automation using Python

This bash script will install wifite2 and its other tools Pyrit, bully, wireshark, hcxtools, hcxdumptool, macchanger

The SUSHI test case generator

🍳 The most delicious pentesting tool

A HTTP interface test tool. CDSpace can send HTTP request and mock HTTP server.

Jest Teamcity Reporter

🔎 Flexible web-based real-time log viewer

Mac and hostname random changer

Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.

Combinatorics generator for JavaScript and Typescript.

Extensive Automation server

伪造数据的API服务

Nmap and NSE command line wrapper in the style of Metasploit

A simple module to introspect, debug and test any THREE.js application.

The Most Powerful Fake Page Redirecting tool...

Various files useful for manual testing and test automation etc.

Qiniu httptest tool: qiniutest

Regression testing framework

Screenshot testing library for Android

Reinforced Mitigation Security Filter

A Deliberately Insecure Web Application

A functional test framework

For running a local continuous testing environment with tox

Captive wifi hotspot bypass tool for Linux

Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.

Just Another Repo

对springSecurity进行二次开发，提供OAuth2授权(支持跨域名，多应用授权)、JWT、SSO、文件上传、权限系统无障碍接入、接口防刷、XSS、CSRF、SQL注入、三方登录(绑定，解绑)、加密通信等一系列安全场景的解决方案

An full HTTP server for Phishing. Downloads recursively the entire webpage.

Generate Code Coverage reports for Behat tests

A browser extension that generates Cypress, Playwright and Puppeteer test scripts from your interactions 🖱 ⌨

dubbo mock web server

Rerun pytest when your code changes

... a GitHub action to import test results into "Xray" - A complete Test Management tool for Jira.

18+Facebook-Phishing.Hack Facebook

Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.

Robot Framework Swarm

To probe what we can't prove, so the unprovable may become probable

Telegraf Test - Simple Test ToolKit of Telegram Bots

BDD Framework for Android

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

⛵ BaseUrlManager的设计初衷主要用于开发时，有多个环境需要打包APK的场景，通过BaseUrlManager提供的BaseUrl动态设置入口，只需打一次包，即可轻松随意的切换不同的开发环境或测试环境。在打生产环境包时，关闭BaseUrl动态设置入口即可。

generalize counter-examples of property-based testing

Stops app usage after a period of time has passed starting from app build date.

🌿 A simple bash script to test JSON API from terminal in a structured and organized way.