Invicti-Security/brainstorm external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Invicti-Security/brainstorm

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Invicti-Security/brainstorm)

Close

Invicti-Security / brainstormView on GitHubMore

• External links
• Readme badge

A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery

☆390Nov 26, 2024Updated last year

Alternatives and similar repositories for brainstorm

Users that are interested in brainstorm are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• jthack / ffufai

  View on GitHub
  AI-powered ffuf wrapper
  ☆781Dec 4, 2025Updated 6 months ago
• dreadnode / burpference

  View on GitHub
  A research project to add some brrrrrr to Burp
  ☆210Feb 16, 2026Updated 3 months ago
• BishopFox / sj

  View on GitHub
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆850May 13, 2026Updated 3 weeks ago
• projectdiscovery / urlfinder

  View on GitHub
  A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
  ☆877Jan 5, 2026Updated 5 months ago
• hadriansecurity / subwiz

  View on GitHub
  A lightweight GPT model, trained to discover subdomains.
  ☆369Dec 18, 2025Updated 5 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• bitquark / shortscan

  View on GitHub
  An IIS short filename enumeration tool
  ☆1,174Nov 25, 2024Updated last year
• w9w / JSA

  View on GitHub
  Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.
  ☆564Mar 8, 2025Updated last year
• puzzlepeaches / ffufw

  View on GitHub
  ☆145Mar 10, 2026Updated 3 months ago
• edoardottt / pphack

  View on GitHub
  Advanced Client-Side Prototype Pollution Scanner
  ☆250Jun 3, 2026Updated last week
• hadriansecurity / sanicdns

  View on GitHub
  Gotta go fast
  ☆154Dec 5, 2025Updated 6 months ago
• Moopinger / smugglefuzz

  View on GitHub
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆312May 16, 2024Updated 2 years ago
• BishopFox / jsluice

  View on GitHub
  Extract URLs, paths, secrets, and other interesting bits from JavaScript
  ☆1,839May 22, 2024Updated 2 years ago
• owasp-noir / noir

  View on GitHub
  Hunt every Endpoint in your code, expose Shadow APIs, map the Attack Surface.
  ☆1,320Updated this week
• danialhalo / SqliSniper

  View on GitHub
  Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers
  ☆313Mar 31, 2024Updated 2 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• BountySecurity / BountyPrompt

  View on GitHub
  Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI. It enables us…
  ☆125Feb 23, 2025Updated last year
• nullenc0de / paramhunter

  View on GitHub
  Looks for parameters in urls
  ☆35Oct 14, 2024Updated last year
• Chocapikk / wpprobe

  View on GitHub
  A fast WordPress plugin enumeration tool
  ☆854Apr 13, 2026Updated last month
• dsecuredcom / vhost-fuzzer

  View on GitHub
  Tool to fuzz for interesting vhost.
  ☆23Jan 8, 2025Updated last year
• xnl-h4ck3r / xnLinkFinder

  View on GitHub
  A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets
  ☆1,563Mar 8, 2026Updated 3 months ago
• jthack / cewlai

  View on GitHub
  ai-based domain name generation
  ☆141May 7, 2026Updated last month
• attacksurge / ax

  View on GitHub
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbit…
  ☆761Dec 26, 2025Updated 5 months ago
• Sh1Yo / x8

  View on GitHub
  Hidden parameters discovery suite
  ☆2,064Sep 8, 2024Updated last year
• 0xacb / recollapse

  View on GitHub
  REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
  ☆1,354Aug 7, 2025Updated 10 months ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• reewardius / bbFuzzing.txt

  View on GitHub
  ☆428May 4, 2026Updated last month
• xnl-h4ck3r / urless

  View on GitHub
  De-clutter a list of URLs
  ☆391Mar 8, 2026Updated 3 months ago
• 0x999-x / jsluicepp

  View on GitHub
  jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
  ☆296Apr 9, 2024Updated 2 years ago
• assetnote / surf

  View on GitHub
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆755Dec 19, 2023Updated 2 years ago
• 6h4ack / IDOR-Scanner

  View on GitHub
  IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …
  ☆45Feb 24, 2025Updated last year
• c0dejump / HExHTTP

  View on GitHub
  Header Exploitation HTTP
  ☆751May 28, 2026Updated 2 weeks ago
• hackvertor / shadow-repeater

  View on GitHub
  ☆42Nov 15, 2025Updated 6 months ago
• bjornhels / CVE-2025-30065

  View on GitHub
  PoC
  ☆12Apr 7, 2025Updated last year
• intigriti / misconfig-mapper

  View on GitHub
  Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…
  ☆900Updated this week
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• assetnote / newtowner

  View on GitHub
  Abuse trust-boundaries to bypass firewalls and network controls
  ☆421Jul 24, 2025Updated 10 months ago
• projectdiscovery / fuzzing-templates

  View on GitHub
  Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
  ☆93May 2, 2024Updated 2 years ago
• momika233 / loxs-optimized

  View on GitHub
  ☆45Mar 5, 2025Updated last year
• edoardottt / missing-cve-nuclei-templates

  View on GitHub
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆438Updated this week
• logangoins / Cable

  View on GitHub
  .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
  ☆400Jul 23, 2025Updated 10 months ago
• Anof-cyber / ParaForge

  View on GitHub
  A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
  ☆143Jun 27, 2023Updated 2 years ago
• protectai / vulnhuntr

  View on GitHub
  Zero shot vulnerability discovery using LLMs
  ☆2,668Feb 6, 2025Updated last year