Alternatives and similar repositories for CWFF:

Users that are interested in CWFF are comparing it to the libraries listed below

• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆145Updated 4 years ago
• ethicalhackingplayground / Bug-Bounty-Tools
  The tools I have programmed to help me with bugbounty's
  ☆114Updated 5 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆210Updated 3 years ago
• BonJarber / SecUtils
  Random utilities from my security projects that might be useful to others
  ☆175Updated this week
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆79Updated 3 years ago
• ghostlulzhacks / waybackSqliScanner
  ☆189Updated 5 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆161Updated 9 months ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆117Updated 3 years ago
• 1ndianl33t / All-in-one_BugBounty_PDF_bundles
  ☆124Updated 4 years ago
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆112Updated 3 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆191Updated 3 years ago
• Zarcolio / wwwordlist
  Wwwordlist is a wordlist generator for pentesters and bug bounty hunters. It extracts words from HTML, URLs, JS/HTTP/input variables, quo…
  ☆101Updated last year
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆60Updated last year
• ignis-sec / puff
  Clientside vulnerability / reflected xss fuzzer
  ☆149Updated last year
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆124Updated last year
• zeroc00I / ReconNotes
  Just some public notes that can be useful and i want let the world knows.
  ☆86Updated 4 years ago
• victoni / Bug-Bounty-Scripts
  The scripts I write to help me on my bug bounty hunting
  ☆121Updated 3 years ago
• MichaelStott / CRLF-Injection-Scanner
  Command line tool for testing CRLF injection on a list of domains.
  ☆161Updated 9 months ago
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆176Updated 4 years ago
• Leoid / MatchandReplace
  Match and Replace script used to automatically generate JSON option file to BurpSuite
  ☆213Updated 5 years ago
• ameenmaali / wordlistgen
  Quickly generate context-specific wordlists for content discovery from lists of URLs or paths
  ☆216Updated 2 years ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆171Updated 3 years ago
• rotemreiss / uddup
  Urls de-duplication tool for better recon.
  ☆138Updated 6 months ago
• serain / bbrecon
  Python library and CLI for the Bug Bounty Recon API
  ☆222Updated 3 years ago
• D4Vinci / bugz-tools
  A collection of tools I wrote for bug bounty or hacking and don't mind publishing it
  ☆113Updated 3 months ago
• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆294Updated 4 months ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆159Updated 4 years ago
• dwisiswant0 / unew
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆120Updated 2 years ago
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆242Updated 7 months ago