BishopFox / jsluiceLinks
Extract URLs, paths, secrets, and other interesting bits from JavaScript
β1,653Updated last year
Alternatives and similar repositories for jsluice
Users that are interested in jsluice are comparing it to the libraries listed below
Sorting:
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given targetβ1,411Updated last week
- π« Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fastβ¦β1,361Updated 4 months ago
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applicationsβ1,241Updated 2 months ago
- Fast and customizable subdomain wordlist generator using DSLβ874Updated last month
- An IIS short filename enumeration toolβ1,018Updated 11 months ago
- declutters url lists for crawling/pentestingβ1,450Updated 8 months ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlistβ1,451Updated 3 weeks ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X!β2,295Updated this week
- Burp Plugin to Bypass WAFs through the insertion of Junk Dataβ1,334Updated 3 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!β964Updated last year
- bypass-url-parserβ1,094Updated last week
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,018Updated 2 months ago
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,009Updated 11 months ago
- Asset inventory of over 800 public bug bounty programs.β1,466Updated 8 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable β¦β683Updated last year
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!β1,203Updated last week
- The most exhaustive list of reliable DNS resolvers.β881Updated this week
- Go client to communicate with Chaos DB API.β789Updated last week
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.β76Updated last year
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomainβ¦β882Updated 2 years ago
- πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.β934Updated 9 months ago
- ProjectDiscovery's Open Source Tool Managerβ967Updated 2 weeks ago
- Hidden parameters discovery suiteβ1,933Updated last year
- Real-world infosec wordlists, updated regularlyβ1,579Updated this week
- Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a β¦β1,509Updated last week
- Subdomain takeover vulnerability checkerβ1,397Updated last year
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β994Updated last year
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,369Updated last year
- Community curated list of public bug bounty and responsible disclosure programs.β1,235Updated last week
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.β702Updated last month