Burp Extension for easily creating Wordlists
☆222Oct 5, 2021Updated 4 years ago
Alternatives and similar repositories for GoldenNuggets-1
Users that are interested in GoldenNuggets-1 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…☆413Nov 24, 2020Updated 5 years ago
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.☆2,558Aug 3, 2024Updated last year
- Random utilities from my security projects that might be useful to others☆183Jan 26, 2025Updated last year
- Making Favicon.ico based Recon Great again !☆1,293Aug 29, 2023Updated 2 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆129Mar 2, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Burp extension to create target specific and tailored wordlist from burp history.☆259Dec 8, 2021Updated 4 years ago
- Fetches javascript file from a list of URLS or subdomains.☆855Jul 22, 2025Updated 11 months ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆300Feb 12, 2023Updated 3 years ago
- OWASP Amass data source scripts (assetfinder, findomain, github, subfinder)☆106Oct 18, 2020Updated 5 years ago
- BBT - Bug Bounty Tools (examples💡)☆1,900Apr 5, 2024Updated 2 years ago
- Bugbounty scope tool☆330Mar 5, 2025Updated last year
- Turbo Intruder Scripts☆230Jun 11, 2020Updated 6 years ago
- A collection of hacks and one-off scripts☆2,504Mar 13, 2025Updated last year
- Create your Custom Wordlist For Fuzzing☆204Oct 14, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A script that can resolve an input file of domains and scan them with masscan☆156Sep 16, 2020Updated 5 years ago
- Hunt down the secrets from the WebArchives for Fun and Profit☆163Dec 8, 2022Updated 3 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,440Sep 13, 2024Updated last year
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆646Jul 7, 2025Updated 11 months ago
- You can read the writeup on this script here☆192May 9, 2026Updated last month
- A collection of tools to perform searches on GitHub.☆1,494Feb 9, 2023Updated 3 years ago
- ☆24Jan 26, 2021Updated 5 years ago
- Secret and/or credential patterns used for gf.☆245Feb 10, 2023Updated 3 years ago
- Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common m…☆77Mar 22, 2024Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆53Jul 14, 2021Updated 4 years ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆1,183Apr 3, 2026Updated 3 months ago
- Tool to find JavaScript files on Websites☆530Nov 2, 2023Updated 2 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆169Nov 27, 2022Updated 3 years ago
- 4xxbypass☆66Mar 29, 2021Updated 5 years ago
- Security tool to find potential vulnerable Server Side Request Forgery (SSRF) parameters.☆363Feb 13, 2026Updated 4 months ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.☆184Nov 22, 2021Updated 4 years ago
- Burp plugin able to find reflected XSS on page in real-time while browsing on site☆1,214Feb 2, 2021Updated 5 years ago
- Client Side Prototype Pollution Scanner☆529Sep 17, 2022Updated 3 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆277Feb 11, 2021Updated 5 years ago
- Extract relative urls from a heap snapshot☆87May 30, 2021Updated 5 years ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆59Mar 2, 2022Updated 4 years ago
- A reverse whois tool based on Whoxy API.☆172Mar 31, 2024Updated 2 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆366Jul 23, 2022Updated 3 years ago
- Wwwordlist is a wordlist generator for pentesters and bug bounty hunters. It extracts words from HTML, URLs, JS/HTTP/input variables, quo…☆108Sep 10, 2023Updated 2 years ago
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆1,074Jan 3, 2025Updated last year