FofaInfo / Awesome-FOFALinks
The FOFA Library collects usage tips, common scenarios, F&Q, and more for FOFA.
☆327Updated 6 months ago
Alternatives and similar repositories for Awesome-FOFA
Users that are interested in Awesome-FOFA are comparing it to the libraries listed below
Sorting:
- Nuclei AI - Browser Extension for Rapid Nuclei Template Generation☆548Updated last year
- LazyHunter is an automated reconnaissance tool designed for bug hunters, leveraging Shodan's InternetDB and CVEDB APIs☆230Updated 9 months ago
- NucleiScanner is a Powerful Automation tool for detecting Unknown Vulnerabilities in the Web Applications☆337Updated 9 months ago
- The IoT security toolkit to help identify IoT related dashboards and scan them for default passwords and vulnerabilities.☆194Updated last year
- A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas i…☆206Updated last year
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆157Updated 10 months ago
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆308Updated last year
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …☆360Updated 9 months ago
- Official Kali Linux tool to check all urls of a domain for SQL injections :)☆369Updated last year
- A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etc☆102Updated 10 months ago
- Unauthenticated Remote Code Execution – Bricks <= 1.9.6☆177Updated last year
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆312Updated 2 years ago
- SQLMap Command Generator: A web-based tool to easily generate customizable SQLMap commands for testing SQL injection vulnerabilities. Fea…☆76Updated last year
- jshunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying se…☆469Updated 3 weeks ago
- Payload for bug bounty☆98Updated last year
- Fetches JavaScript files quickly and comprehensively.☆130Updated 2 years ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆420Updated this week
- CVE-2024-27198 & CVE-2024-27199 Authentication Bypass --> RCE in JetBrains TeamCity Pre-2023.11.4☆154Updated last year
- A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.☆832Updated 2 weeks ago
- Nuclei-AI-Prompts☆350Updated 6 months ago
- CVE-2024-23897☆201Updated last year
- A Linux persistence tool!☆160Updated 4 months ago
- Bypass 403 pages☆129Updated last year
- Automation tool to testing and confirm the xss vulnerability.☆304Updated 6 months ago
- Fuzz 401/403/404 pages for bypasses☆377Updated 3 weeks ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆392Updated this week
- Bypass WAF SQL Injection SQLMAP☆196Updated 3 years ago
- A collection of advanced PHP and ASPX web shells designed to bypass security measures.☆56Updated 2 weeks ago
- Community curated list of search queries for various products across multiple search engines.☆360Updated this week
- A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnera…☆398Updated last month