727 Open source projects that are alternatives of or similar to Xsser

XSS HTTP Inject0r is a proof of concept tool that shows how XSS (Cross Site Scripting) flags can be exploited easily. It is written in HTML + Javascript + PHP and released under GPLv3.

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

A container repository for my public web hacks!

Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

List of every possible vulnerabilities in computer security.

A fast DOM based XSS vulnerability scanner with simplicity.

Directory/File, DNS and VHost busting tool written in Go

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Useful tools and scripts during Penetration Testing engagements

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

A BPMN 2.0 rendering toolkit and web modeler.

Attack Surface Management Platform | Sn1perSecurity LLC

🔨 A modern multiple reverse shell sessions manager wrote in go

Top disclosed reports from HackerOne

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Open source pre-operation C2 server based on python and powershell

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

🔪Browser logic vulnerabilities ☠️

Ramda Adjunct is the most popular and most comprehensive set of functional utilities for use with Ramda, providing a variety of useful, well tested functions with excellent documentation.

Tool for automating customized attacks against web applications. Fully made in C language with pthreads, it has fast performance.

Dradis Framework: Colllaboration and reporting for IT Security teams

Credential stuffing engine built for security professionals

A swiss army knife for pentesting networks

Automatically Launch Google Hacking Queries Against A Target Domain

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Dear PyGui: A fast and powerful Graphical User Interface Toolkit for Python with minimal dependencies

All MITM attacks in one place.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

FireBug for designers › Edit any webpage, in any state https://a.nerdy.dev/gimme-visbug

hydra

NetCat for Windows

Powerfull XSS Scanning and Parameter analysis tool&gem

A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

Penetration Testing notes, resources and scripts

Advanced Web Shell

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

Handbook of information collection for penetration testing and src

A big list of Android Hackerone disclosed reports and other resources.

Fast web fuzzer written in Go

OSINT Tool: Generate username lists for companies on LinkedIn

fireELF - Fileless Linux Malware Framework

A graph-based tool for visualizing effective access and resource relationships in AWS environments.

Cross-platform desktop GUI toolkit written in Nim

👻Stowaway -- Multi-hop Proxy Tool for pentesters

HostHunter a recon tool for discovering hostnames using OSINT techniques.

A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Go wrapper library for "Dear ImGui" (https://github.com/ocornut/imgui)

Intelligence tool but without API key

OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.

mXtract - Memory Extractor & Analyzer

A framework for Backdoor development!

DNS Rebinding Exploitation Framework

XssPayload List . Usage: