Alternatives and similar repositories for firepwn-tool

Users that are interested in firepwn-tool are comparing it to the libraries listed below

• denandz / sourcemapper
  Extract JavaScript source trees from Sourcemap files
  ☆1,264Updated last year
• vmfunc / sif
  the blazing-fast pentesting suite.
  ☆301Updated this week
• nikitastupin / clairvoyance
  Obtain GraphQL API schema even if the introspection is disabled
  ☆1,332Updated last month
• indianajson / can-i-take-over-dns
  "Can I take over DNS?" — a list of DNS providers and how to claim vulnerable domains.
  ☆1,078Updated 10 months ago
• s0md3v / wappalyzer-next
  wappalyzer alternative based on wappalyzer browser extension
  ☆299Updated 3 weeks ago
• iosiro / baserunner
  A tool for exploring Firebase datastores.
  ☆235Updated 5 months ago
• narfindustries / http-garden
  Differential testing framework for HTTP implementations
  ☆918Updated 3 weeks ago
• kevin-mizu / domloggerpp
  A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
  ☆743Updated 3 weeks ago
• iangcarroll / cookiemonster
  🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
  ☆957Updated 11 months ago
• google / bughunters
  ☆148Updated 3 weeks ago
• Escape-Technologies / graphql-wordlist
  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
  ☆454Updated 2 years ago
• hackvertor / blind-css-exfiltration
  ☆124Updated 2 years ago
• renniepak / CSPBypass
  CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scr…
  ☆534Updated 3 weeks ago
• ddd / req2proto
  Tool for reversing Google internal protobuf definitions
  ☆159Updated 7 months ago
• francisconeves97 / jxscout
  jxscout superpowers JavaScript analysis for security researchers
  ☆327Updated 3 months ago
• c3l3si4n / pugdns
  An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.
  ☆243Updated 6 months ago
• trufflesecurity / Trufflehog-Chrome-Extension
  ☆419Updated 4 years ago
• lachlan2k / React2Shell-CVE-2025-55182-original-poc
  Original Proof-of-Concepts for React2Shell CVE-2025-55182
  ☆985Updated last month
• davtur19 / DotGit
  An extension for checking if .git is exposed in visited websites
  ☆462Updated 4 months ago
• google / protobuf-extensibility-for-burp
  ☆88Updated last year
• dolevf / graphw00f
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆791Updated 6 months ago
• dolevf / graphql-cop
  Security Auditor Utility for GraphQL APIs
  ☆581Updated last month
• PortSwigger / bypass-bot-detection
  Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection
  ☆447Updated 4 months ago
• hadriansecurity / sanicdns
  Gotta go fast
  ☆153Updated last month
• karthikuj / sasori
  Sasori is a dynamic web crawler powered by Puppeteer, designed for lightning-fast endpoint discovery.
  ☆147Updated last year
• hackermondev / cf-teleport
  Tool to teleport your HTTP requests to different Cloudflare datacenters.
  ☆141Updated 11 months ago
• trufflesecurity / xsshunter
  ☆531Updated last month
• nxenon / h2spacex
  HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆207Updated 7 months ago
• swoops / eval_villain
  A Firefox Web Extension to improve the discovery of DOM XSS.
  ☆281Updated last year
• intruder-io / guidtool
  A tool to inspect and attack version 1 GUIDs
  ☆239Updated 3 years ago