Alternatives and similar repositories for GoldenNuggets-1

Users that are interested in GoldenNuggets-1 are comparing it to the libraries listed below

• 0xdekster / ReconNote

  View on GitHub
  Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…
  ☆416Nov 24, 2020Updated 5 years ago
• BonJarber / SecUtils

  View on GitHub
  Random utilities from my security projects that might be useful to others
  ☆183Jan 26, 2025Updated last year
• PatrikFehrenbach / amass-tools

  View on GitHub
  ☆105Oct 18, 2020Updated 5 years ago
• devanshbatham / FavFreak

  View on GitHub
  Making Favicon.ico based Recon Great again !
  ☆1,260Aug 29, 2023Updated 2 years ago
• obheda12 / GitDorker

  View on GitHub
  A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
  ☆2,486Aug 3, 2024Updated last year
• D4Vinci / CWFF

  View on GitHub
  Create your Custom Wordlist For Fuzzing
  ☆202Oct 14, 2024Updated last year
• 0xDexter0us / Scavenger

  View on GitHub
  Burp extension to create target specific and tailored wordlist from burp history.
  ☆255Dec 8, 2021Updated 4 years ago
• dwisiswant0 / unew

  View on GitHub
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆128Mar 2, 2022Updated 3 years ago
• lc / subjs

  View on GitHub
  Fetches javascript file from a list of URLS or subdomains.
  ☆834Jul 22, 2025Updated 6 months ago
• joefizz / autofindomain

  View on GitHub
  ☆24Jan 26, 2021Updated 5 years ago
• m4ll0k / BBTz

  View on GitHub
  BBT - Bug Bounty Tools (examples💡)
  ☆1,880Apr 5, 2024Updated last year
• ameenmaali / qsfuzz

  View on GitHub
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆303Feb 12, 2023Updated 3 years ago
• defparam / tiscripts

  View on GitHub
  Turbo Intruder Scripts
  ☆228Jun 11, 2020Updated 5 years ago
• dwisiswant0 / gf-secrets

  View on GitHub
  Secret and/or credential patterns used for gf.
  ☆243Feb 10, 2023Updated 3 years ago
• thomashartm / burp-aem-scanner

  View on GitHub
  Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common m…
  ☆75Mar 22, 2024Updated last year
• ethicalhackingplayground / TProxer

  View on GitHub
  A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
  ☆185Nov 22, 2021Updated 4 years ago
• 1ndianl33t / Gf-Patterns

  View on GitHub
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,396Sep 13, 2024Updated last year
• root4loot / rescope

  View on GitHub
  Bugbounty scope tool
  ☆332Mar 5, 2025Updated 11 months ago
• honoki / bbrf-client

  View on GitHub
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆642Jul 7, 2025Updated 7 months ago
• gwen001 / github-search

  View on GitHub
  A collection of tools to perform searches on GitHub.
  ☆1,464Feb 9, 2023Updated 3 years ago
• tomnomnom / hacks

  View on GitHub
  A collection of hacks and one-off scripts
  ☆2,417Mar 13, 2025Updated 11 months ago
• dark-warlord14 / ffufplus

  View on GitHub
  You can read the writeup on this script here
  ☆192Sep 30, 2021Updated 4 years ago
• In3tinct / See-SURF

  View on GitHub
  Security tool (now AI powered 🤖) to find potential vulnerable Server Side Request Forgery (SSRF) parameters.
  ☆353Jan 29, 2026Updated 2 weeks ago
• devanshbatham / ArchiveFuzz

  View on GitHub
  Hunt down the secrets from the WebArchives for Fun and Profit
  ☆163Dec 8, 2022Updated 3 years ago
• Josue87 / roboxtractor

  View on GitHub
  Extract endpoints marked as disallow in robots files to generate wordlists.
  ☆58Mar 2, 2022Updated 3 years ago
• Raywando / 4xxbypass

  View on GitHub
  4xxbypass
  ☆67Mar 29, 2021Updated 4 years ago
• robre / scripthunter

  View on GitHub
  Tool to find JavaScript files on Websites
  ☆526Nov 2, 2023Updated 2 years ago
• Damian89 / extended-ssrf-search

  View on GitHub
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆280Feb 11, 2021Updated 5 years ago
• rastating / dnmasscan

  View on GitHub
  A script that can resolve an input file of domains and scan them with masscan
  ☆155Sep 16, 2020Updated 5 years ago
• msrkp / PPScan

  View on GitHub
  Client Side Prototype Pollution Scanner
  ☆524Sep 17, 2022Updated 3 years ago
• honoki / bbrf-burp-plugin

  View on GitHub
  A BurpSuite plugin for BBRF
  ☆25Nov 17, 2024Updated last year
• elkokc / reflector

  View on GitHub
  Burp plugin able to find reflected XSS on page in real-time while browsing on site
  ☆1,201Feb 2, 2021Updated 5 years ago
• bytebutcher / burp-send-to

  View on GitHub
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆163Nov 27, 2022Updated 3 years ago
• MilindPurswani / whoxyrm

  View on GitHub
  A reverse whois tool based on Whoxy API.
  ☆169Mar 31, 2024Updated last year
• vsec7 / BurpSuite-Xkeys

  View on GitHub
  A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
  ☆309Jul 9, 2024Updated last year
• harsh-bothra / Bheem

  View on GitHub
  ☆375Aug 20, 2021Updated 4 years ago
• ayoubfathi / leaky-paths

  View on GitHub
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆1,021Jun 24, 2024Updated last year
• AlephNullSK / dnsgen

  View on GitHub
  DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…
  ☆1,044Jan 3, 2025Updated last year
• Zarcolio / wwwordlist

  View on GitHub
  Wwwordlist is a wordlist generator for pentesters and bug bounty hunters. It extracts words from HTML, URLs, JS/HTTP/input variables, quo…
  ☆105Sep 10, 2023Updated 2 years ago