Alternatives and similar repositories for firepwn-tool

Users that are interested in firepwn-tool are comparing it to the libraries listed below

• denandz / sourcemapper
  Extract JavaScript source trees from Sourcemap files
  ☆1,264Updated last year
• nikitastupin / clairvoyance
  Obtain GraphQL API schema even if the introspection is disabled
  ☆1,332Updated last month
• narfindustries / http-garden
  Differential testing framework for HTTP implementations
  ☆918Updated last month
• iangcarroll / cookiemonster
  🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
  ☆957Updated last year
• iosiro / baserunner
  A tool for exploring Firebase datastores.
  ☆235Updated 5 months ago
• indianajson / can-i-take-over-dns
  "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.
  ☆1,078Updated 10 months ago
• kevin-mizu / domloggerpp
  A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
  ☆743Updated last month
• vmfunc / sif
  the blazing-fast pentesting suite.
  ☆301Updated this week
• francisconeves97 / jxscout
  jxscout superpowers JavaScript analysis for security researchers
  ☆327Updated 3 months ago
• lachlan2k / React2Shell-CVE-2025-55182-original-poc
  Original Proof-of-Concepts for React2Shell CVE-2025-55182
  ☆994Updated last month
• Escape-Technologies / graphql-wordlist
  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
  ☆454Updated 2 years ago
• renniepak / CSPBypass
  CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scr…
  ☆534Updated 3 weeks ago
• dolevf / graphql-cop
  Security Auditor Utility for GraphQL APIs
  ☆581Updated last month
• trufflesecurity / Trufflehog-Chrome-Extension
  ☆419Updated 4 years ago
• hackvertor / blind-css-exfiltration
  ☆124Updated 2 years ago
• PortSwigger / bypass-bot-detection
  Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection
  ☆447Updated 4 months ago
• dolevf / graphw00f
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆791Updated 7 months ago
• s0md3v / wappalyzer-next
  wappalyzer alternative based on wappalyzer browser extension
  ☆299Updated 3 weeks ago
• c3l3si4n / pugdns
  An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.
  ☆243Updated 6 months ago
• FlorianPicca / JWT-Key-Recovery
  A tool that recovers the public key used to sign JWT tokens
  ☆129Updated 2 years ago
• davtur19 / DotGit
  An extension for checking if .git is exposed in visited websites
  ☆462Updated 4 months ago
• google / protobuf-extensibility-for-burp
  ☆88Updated last year
• intruder-io / guidtool
  A tool to inspect and attack version 1 GUIDs
  ☆239Updated 3 years ago
• google / bughunters
  ☆151Updated 3 weeks ago
• g0ldencybersec / gungnir
  CT Log Scanner
  ☆492Updated 2 weeks ago
• nxenon / h2spacex
  HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆207Updated 7 months ago
• kevin-mizu / GMSGadget
  This repository is a collection of JavaScript gadgets that can be used to bypass XSS mitigations such as Content Security Policy (CSP) an…
  ☆122Updated 2 months ago
• bebiksior / EvenBetter
  EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎
  ☆160Updated 2 months ago
• Escape-Technologies / graphinder
  🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
  ☆226Updated 2 years ago
• ddd / req2proto
  Tool for reversing Google internal protobuf definitions
  ☆159Updated 7 months ago