URLs for Exploit (UFX) is a powerful, modular, and extensible tool designed for security researchers, penetration testers, and developers. It automates the process of collecting, analyzing, and filtering URLs from multiple online sources based on user-defined patterns for various vulnerabilities, such as XSS, SQL Injection, LFI, and more.
☆17Jan 30, 2025Updated last year
Alternatives and similar repositories for UFX
Users that are interested in UFX are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A simple bash script for Web Cache Deception exploitation.☆16Oct 7, 2024Updated last year
- Script that I used for the Portswigger lab: Lab: Blind SQL injection with conditional errors☆12Jun 17, 2024Updated 2 years ago
- ☆12Jan 23, 2020Updated 6 years ago
- JavaScript files used to bypass Root Detection & SSL Pinning in Frida.☆15Sep 12, 2022Updated 3 years ago
- Android App for running UART GATT Server (Peripheral) on phone☆16Dec 16, 2016Updated 9 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Snake and ladders game☆11Mar 3, 2023Updated 3 years ago
- Pler - Domain Probe and Cloudflare Filter Tool. Pler is a simple yet powerful Python script to check whether a domain is using Cloudflare…☆21Aug 12, 2025Updated 10 months ago
- Application for showcasing Android Deep Link and WebView Vulnerabilities☆18Mar 22, 2023Updated 3 years ago
- A fast and efficient subdomain hijacking scanner that checks for takeover vulnerabilities by matching HTTP response bodies against predef…☆31Apr 12, 2026Updated 2 months ago
- MQTT Security Testing☆24Jul 26, 2022Updated 3 years ago
- Control wireless sockets, alarm systems or sex toys with a small, easy to build remote.☆20Oct 2, 2016Updated 9 years ago
- 🚧 Bypass Android SSL Pinning with ProxyMan and Frida☆32Aug 1, 2024Updated last year
- :)☆12Mar 24, 2021Updated 5 years ago
- AI-Driven Breach and Attack Simulation Tool (Initial Proof of Concept for AI Pentest Copilot)☆27Jan 6, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Designed to demonstrate how hackers can obtain detailed information about target devices through a simple link, Get-INFO serves as both a…☆32Aug 3, 2025Updated 10 months ago
- Command line interface for Jsmon Security Platform☆33May 18, 2026Updated last month
- In Detail Methodology of How I perform Web Pentesting☆10Oct 18, 2025Updated 8 months ago
- Writeup Template. Feel free to replicate but please give me credit!☆13Nov 7, 2025Updated 7 months ago
- Simple XSS vulnerability checker tool very useful with xsschecker.☆27Nov 21, 2025Updated 7 months ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"☆18Jun 2, 2025Updated last year
- Goby-Poc-Collection for Goby scanner https://github.com/gobysec/Goby - forked from many github accounts Thanks the authors☆13Dec 10, 2023Updated 2 years ago
- A CLI utility to scan S3 buckets permissions☆14May 14, 2023Updated 3 years ago
- A MBR Fuzzer☆31Apr 3, 2024Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Jan 11, 2025Updated last year
- Url scrapper or extractor from alienvault☆39Mar 1, 2025Updated last year
- experimental wildcard subdomain filtering prototype☆14Aug 5, 2023Updated 2 years ago
- A collaborative hub for Nuclei templates. Contribute, share, and explore powerful vulnerability detection tools!☆49Updated this week
- Bulk scanning tool for ServiceNow CVE-2024-4879 vulnerability☆10Jul 12, 2024Updated last year
- Grab form parameters easily☆14Dec 11, 2024Updated last year
- ☆10Sep 13, 2024Updated last year
- Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLs…☆12May 28, 2023Updated 3 years ago
- ☆19Apr 26, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Algorithms and data structures implemented in JavaScript with explanations and links to further readings☆12Aug 29, 2020Updated 5 years ago
- [OBSOLETE] Nodejs wrapper that communicates with the Telegram API.☆11Sep 25, 2018Updated 7 years ago
- Most powerfull Wifi Jammier.with fixes.☆12Oct 14, 2022Updated 3 years ago
- This repository contains a proof-of-concept exploit script for CVE-2025-32432, a pre-authentication Remote Code Execution (RCE) vulnerabi…☆26Apr 27, 2025Updated last year
- This Telegram bot automatically fetches and shares Persian poems to telegram channel from the Ganjoor website.☆27Updated this week
- Super Resolution Using Autoencoder & TensorFlow☆12Nov 13, 2022Updated 3 years ago
- dEX is a powerful tool for transmitting OS command output over DNS. It is equipped with robust mechanisms for handling missing chunks, en…☆18Nov 21, 2024Updated last year