Anof-cyber / ParaForge
A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
☆139Updated last year
Related projects: ⓘ
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆121Updated 6 months ago
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆112Updated 6 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆87Updated last month
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆80Updated 2 months ago
- Private Nuclei Templates☆88Updated last year
- Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templ…☆91Updated last month
- ☆116Updated this week
- Automated Subdomain Enumeration and Scanning Tool☆107Updated 11 months ago
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆95Updated last year
- CVE Collection of jQuery XSS Payloads☆64Updated last year
- A path-normalization pentesting tool.☆115Updated 11 months ago
- Nodesub is a command-line tool for finding subdomains in bug bounty programs☆135Updated last month
- A Lightning-Fast DNS Resolver written in Rust 🦀☆62Updated 4 months ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆78Updated last week
- ☆100Updated last year
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆70Updated last month
- ☆233Updated 3 years ago
- ☆113Updated 2 years ago
- Describe how to use ffuf different options with examples☆75Updated last year
- unleashed ffuf☆79Updated 2 months ago
- Self-hosted passive subdomain continous monitoring tool.☆154Updated 7 months ago
- Collection's of Tech Talk that are presented by me :)☆94Updated 4 months ago
- CVE Collection of jQuery UI XSS Payloads☆110Updated last year
- Identify virtual hosts by similarity comparison☆114Updated last month
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆56Updated 2 months ago
- Gather results of dorks across a number of search engines☆74Updated 2 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 8 months ago
- ☆110Updated 7 months ago
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆88Updated last month
- ☆139Updated last year