URLs for Exploit (UFX) is a powerful, modular, and extensible tool designed for security researchers, penetration testers, and developers. It automates the process of collecting, analyzing, and filtering URLs from multiple online sources based on user-defined patterns for various vulnerabilities, such as XSS, SQL Injection, LFI, and more.
☆17Jan 30, 2025Updated last year
Alternatives and similar repositories for UFX
Users that are interested in UFX are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- FileFetcher is a Python tool that extracts and filters URLs from archived Wayback Machine data based on file types like .pdf, .zip, .sql,…☆20Jan 16, 2025Updated last year
- A simple bash script for Web Cache Deception exploitation.☆16Oct 7, 2024Updated last year
- Script that I used for the Portswigger lab: Lab: Blind SQL injection with conditional errors☆12Jun 17, 2024Updated last year
- ☆12Jan 23, 2020Updated 6 years ago
- HackLiners: CyberSec/BugHunting OneLiners☆62Oct 16, 2024Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Snake and ladders game☆11Mar 3, 2023Updated 3 years ago
- Pler - Domain Probe and Cloudflare Filter Tool. Pler is a simple yet powerful Python script to check whether a domain is using Cloudflare…☆22Aug 12, 2025Updated 8 months ago
- Application for showcasing Android Deep Link and WebView Vulnerabilities☆18Mar 22, 2023Updated 3 years ago
- A fast and efficient subdomain hijacking scanner that checks for takeover vulnerabilities by matching HTTP response bodies against predef…☆29Apr 12, 2026Updated last week
- MQTT Security Testing☆24Jul 26, 2022Updated 3 years ago
- 🚧 Bypass Android SSL Pinning with ProxyMan and Frida☆32Aug 1, 2024Updated last year
- AI-Driven Breach and Attack Simulation Tool (Initial Proof of Concept for AI Pentest Copilot)☆26Jan 6, 2025Updated last year
- Designed to demonstrate how hackers can obtain detailed information about target devices through a simple link, Get-INFO serves as both a…☆32Aug 3, 2025Updated 8 months ago
- ☆30Feb 4, 2026Updated 2 months ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- In Detail Methodology of How I perform Web Pentesting☆10Oct 18, 2025Updated 6 months ago
- Writeup Template. Feel free to replicate but please give me credit!☆13Nov 7, 2025Updated 5 months ago
- Simple XSS vulnerability checker tool very useful with xsschecker.☆28Nov 21, 2025Updated 4 months ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"☆17Jun 2, 2025Updated 10 months ago
- Goby-Poc-Collection for Goby scanner https://github.com/gobysec/Goby - forked from many github accounts Thanks the authors☆12Dec 10, 2023Updated 2 years ago
- A CLI utility to scan S3 buckets permissions☆14May 14, 2023Updated 2 years ago
- A MBR Fuzzer☆31Apr 3, 2024Updated 2 years ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Jan 11, 2025Updated last year
- Url scrapper or extractor from alienvault☆39Mar 1, 2025Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- experimental wildcard subdomain filtering prototype☆14Aug 5, 2023Updated 2 years ago
- A collaborative hub for Nuclei templates. Contribute, share, and explore powerful vulnerability detection tools!☆50Feb 1, 2025Updated last year
- Bulk scanning tool for ServiceNow CVE-2024-4879 vulnerability☆10Jul 12, 2024Updated last year
- Grab form parameters easily☆14Dec 11, 2024Updated last year
- AMD Generic Encapsulated Software Architecture Platform Security Processor Configuration Block manipulation library☆16Dec 18, 2025Updated 4 months ago
- ☆10Sep 13, 2024Updated last year
- ☆20Aug 23, 2025Updated 7 months ago
- AD concepts, attack surfaces and attack vectors notes, slides, video...☆17Dec 6, 2024Updated last year
- Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLs…☆12May 28, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆18Apr 26, 2025Updated 11 months ago
- Africana Framework is an open-source, community-driven cybersecurity toolkit designed for ethical penetration testing & vulnerability ass…☆44Feb 22, 2026Updated last month
- Algorithms and data structures implemented in JavaScript with explanations and links to further readings☆12Aug 29, 2020Updated 5 years ago
- A tool to find and save recent writeups from specified URLs, with optional Telegram notifications.☆10Dec 24, 2025Updated 3 months ago
- ☆16Jun 11, 2022Updated 3 years ago
- [OBSOLETE] Nodejs wrapper that communicates with the Telegram API.☆11Sep 25, 2018Updated 7 years ago
- Most powerfull Wifi Jammier.with fixes.☆13Oct 14, 2022Updated 3 years ago