790 Open source projects that are alternatives of or similar to xssmap

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

A fast DOM based XSS vulnerability scanner with simplicity.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

⚡️ Docker official image for Wallarm Node. API security platform agent.

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

🔎 shodansploit > v1.3.0

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Code from Blackhat Python book

Most advanced XSS scanner.

dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

A high performance offensive security tool for reconnaissance and vulnerability scanning

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

A unified console to perform the "kill chain" stages of attacks.

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

List of every possible vulnerabilities in computer security.

Penetration Testing notes, resources and scripts

Semi-automatic OSINT framework and package manager

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

The Shadow Attack Framework

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Sandfly Security Agentless Compromise and Intrusion Detection System For Linux

Web Scan Lazy Tools - Python Package

Web application vulnerability scanner

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

Improve your code security by running different security checks/validation in a simple way.

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

A container repository for my public web hacks!

A tool to monitor local network traffic for possible security vulnerabilities. Warns user against possible nmap scans, Nikto scans, credentials sent in-the-clear, and shellshock attacks. Currently supports live monitoring and network capture (pcap) scanning.

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

Create complex tools execution Workflows for working together

Yet Another PHP Shell - The most complete PHP reverse shell

RayS: A Ray Searching Method for Hard-label Adversarial Attack (KDD2020)

Powerful dork searcher and vulnerability scanner for windows platform

Lightweight In-App Web Application Firewall for PHP

Hack instagram bruteforce new

Markdown to HTML using marked and DOMPurify. Safe by default.

DDoS Attack & Protection Tools for Windows, Linux & Android

Simple Keylogger with smtp to send emails on your account using python works on linux and Windows

Foxss is a simple php based penetration Testing Tool.Currently it will help to find XSS vulnerability in websites.

对springSecurity进行二次开发，提供OAuth2授权(支持跨域名，多应用授权)、JWT、SSO、文件上传、权限系统无障碍接入、接口防刷、XSS、CSRF、SQL注入、三方登录(绑定，解绑)、加密通信等一系列安全场景的解决方案

Repository of my CTF writeups

Hashtopolis - A Hashcat wrapper for distributed hashcracking

No description or website provided.

GitHub Advance Security Compliance Action

Socks5 Proxy HTTP/HTTPS-Flooding (cc) attack

This is a simple DDoS python botnet script with remote monitoring & management for education purposes.

Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.

utility to sanitize hast nodes

SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.

A simple Security Camera example which detects motion and perform face recognition

Nmap and NSE command line wrapper in the style of Metasploit

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Examples of security features (or mishaps) on web applications -- these are mostly examples and tutorials from the WASEC book.