DanaEpp / APIDiscovery
An extension for Burp's Web Vulnerability Scanner that can detect API discovery metadata and extract data useful during recon.
☆15Updated 6 months ago
Alternatives and similar repositories for APIDiscovery:
Users that are interested in APIDiscovery are comparing it to the libraries listed below
- ai-based domain name generation☆87Updated 2 months ago
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆56Updated 3 months ago
- Finds graphql queries in javascript files☆60Updated 11 months ago
- ☆14Updated 9 months ago
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆136Updated 7 months ago
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆39Updated last year
- A Burp extension to help pentesters copy requests / responses for reports.☆38Updated 4 months ago
- ☆139Updated last year
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆114Updated 4 months ago
- Save your dorking results to the terminal. A modified version of TomNomNom's amazing tool!☆89Updated last month
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…☆50Updated 3 months ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆122Updated 2 years ago
- ☆31Updated last year
- ☆103Updated 9 months ago
- A collection of Turbo Intruder scripts.☆58Updated 2 months ago
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆139Updated last year
- ☆63Updated last year
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆73Updated 3 weeks ago
- Archived Please go to https://github.com/adamjsturge/xsshunter-go☆31Updated last year
- ☆28Updated this week
- An MS Sharepoint and Frontpage Auditing Tool☆48Updated 5 months ago
- ☆20Updated last year
- JSSCM detects expired domains for Stored XSS exploitation during browsing.☆44Updated 3 weeks ago
- IIS shortname scanner + bruteforce☆52Updated last year
- A simple plugin to export JS files from one or multiple targets☆41Updated last year
- Mine URLs from Browser's Heap Snapshot for fun and profit☆64Updated last year
- unleashed ffuf☆111Updated 9 months ago
- Tool to parse subdomains from dmarc.live☆73Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆53Updated 6 months ago
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆62Updated last month