Alternatives and similar repositories for firepwn-tool

Users that are interested in firepwn-tool are comparing it to the libraries listed below

• denandz / sourcemapper
  Extract JavaScript source trees from Sourcemap files
  ☆1,242Updated last year
• nikitastupin / clairvoyance
  Obtain GraphQL API schema even if the introspection is disabled
  ☆1,319Updated last week
• lachlan2k / React2Shell-CVE-2025-55182-original-poc
  Original Proof-of-Concept's for React2Shell CVE-2025-55182
  ☆381Updated last week
• indianajson / can-i-take-over-dns
  "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.
  ☆1,074Updated 9 months ago
• vmfunc / sif
  the blazing-fast pentesting suite.
  ☆270Updated last month
• kevin-mizu / domloggerpp
  A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
  ☆743Updated this week
• narfindustries / http-garden
  Differential testing framework for HTTP implementations
  ☆913Updated 2 weeks ago
• iosiro / baserunner
  A tool for exploring Firebase datastores.
  ☆236Updated 4 months ago
• s0md3v / wappalyzer-next
  wappalyzer alternative based on wappalyzer browser extension
  ☆295Updated 3 weeks ago
• davtur19 / DotGit
  An extension for checking if .git is exposed in visited websites
  ☆462Updated 3 months ago
• renniepak / CSPBypass
  CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scr…
  ☆509Updated last month
• francisconeves97 / jxscout
  jxscout superpowers JavaScript analysis for security researchers
  ☆313Updated 2 months ago
• Escape-Technologies / graphql-wordlist
  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
  ☆446Updated 2 years ago
• c3l3si4n / pugdns
  An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.
  ☆240Updated 5 months ago
• iangcarroll / cookiemonster
  🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
  ☆953Updated 11 months ago
• trufflesecurity / Trufflehog-Chrome-Extension
  ☆415Updated 4 years ago
• hackvertor / blind-css-exfiltration
  ☆121Updated 2 years ago
• dolevf / graphql-cop
  Security Auditor Utility for GraphQL APIs
  ☆553Updated 3 weeks ago
• doyensec / wsrepl
  WebSocket REPL for pentesters
  ☆230Updated last year
• attacksurge / ax
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbit…
  ☆672Updated 3 months ago
• Lissy93 / wapalyzer
  🌐 Identify the technologies powering any website. This is a fork of the now deleted Wappalyzer project by @AliasIO and community.
  ☆292Updated last year
• g0ldencybersec / gungnir
  CT Log Scanner
  ☆427Updated 8 months ago
• trufflesecurity / xsshunter
  ☆528Updated 2 weeks ago
• trufflesecurity / force-push-scanner
  Scan for secrets in dangling commits on GitHub using GH Archive data.
  ☆411Updated 5 months ago
• google / bughunters
  ☆146Updated last week
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆184Updated last year
• swoops / eval_villain
  A Firefox Web Extension to improve the discovery of DOM XSS.
  ☆280Updated last year
• PortSwigger / bypass-bot-detection
  Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection
  ☆438Updated 3 months ago
• nxenon / h2spacex
  HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆203Updated 6 months ago
• rootcathacking / catspin
  Catspin rotates the IP address of HTTP requests making IP based blocks or slowdown measures ineffective. It is based on AWS API Gateway a…
  ☆265Updated last year