Alternatives and similar repositories for wafme0w

Users that are interested in wafme0w are comparing it to the libraries listed below

• wfinn / redirex

  View on GitHub
  tool that generates bypasses for open redirects
  ☆52Apr 18, 2022Updated 3 years ago
• elceef / subzuf

  View on GitHub
  a smart DNS response-guided subdomain fuzzer
  ☆156Jan 3, 2023Updated 3 years ago
• CyberSecurityUP / ImgPayload

  View on GitHub
  Advanced shellcode injector for images supports BMP, GIF, EXIF (JPEG), and LSB (PNG) techniques. Includes XOR encoding, offset indexing, …
  ☆24Jun 11, 2025Updated 8 months ago
• buggysolid / bugbounty-wordlist

  View on GitHub
  Real world bug bounty wordlists
  ☆117Jul 20, 2023Updated 2 years ago
• trickest / enumerepo

  View on GitHub
  List all public repositories for (valid) GitHub usernames
  ☆76Sep 25, 2023Updated 2 years ago
• X1r0z / go-ntlmssp

  View on GitHub
  NTLM/Negotiate authentication over HTTP that supports Pass The Hash Mode (PtH)
  ☆17Sep 13, 2024Updated last year
• rahulkadavil / Buggyapp

  View on GitHub
  Buggyapp is an vulnerable android application. This app can be used by pentesters, security researchers to practice Android application p…
  ☆13Jun 4, 2022Updated 3 years ago
• notnotnotveg / nuclei-custom-templates

  View on GitHub
  Additional nuclei templates
  ☆38Oct 16, 2023Updated 2 years ago
• 0xJeti / intitools

  View on GitHub
  Collection of tools to interact with Intigriti website
  ☆16Aug 10, 2024Updated last year
• mux0x / mulef

  View on GitHub
  your bestfried for finding LinkedIn Employees on github
  ☆15Mar 28, 2023Updated 2 years ago
• zan8in / leo

  View on GitHub
  Leo is a network logon cracker which support many different services.
  ☆69Aug 13, 2025Updated 6 months ago
• MUSKTEER4004 / CVE-spider

  View on GitHub
  爬虫，获取NVD/CNVD/CNNVD数据
  ☆21Jan 7, 2022Updated 4 years ago
• trickest / mkpath

  View on GitHub
  Make URL path combinations using a wordlist
  ☆169Sep 25, 2023Updated 2 years ago
• pry0cc / nmap-to-ports

  View on GitHub
  Pipe nmap verbose output to a usable format for httpx or host:port notation.
  ☆17Jul 7, 2022Updated 3 years ago
• ThreatUnknown / jsubfinder

  View on GitHub
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆281Jan 15, 2025Updated last year
• heartshare / go-wafw00f

  View on GitHub
  使用golang重写开源工具wafw00f
  ☆47Feb 25, 2021Updated 4 years ago
• redhuntlabs / HTTPLoot

  View on GitHub
  An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code …
  ☆407Jan 22, 2025Updated last year
• gwen001 / related-domains

  View on GitHub
  Find related domains of a given domain.
  ☆103Aug 5, 2023Updated 2 years ago
• gwen001 / gitlab-subdomains

  View on GitHub
  Find subdomains on GitLab.
  ☆106Apr 28, 2024Updated last year
• xnl-h4ck3r / urless

  View on GitHub
  De-clutter a list of URLs
  ☆384Feb 3, 2026Updated last week
• fcavallarin / burp-dom-scanner

  View on GitHub
  Burp Suite's extension to scan and crawl Single Page Applications
  ☆107Apr 14, 2023Updated 2 years ago
• UltimateSec / hw-iot-c2

  View on GitHub
  一款利用某云厂商的物联网平台作为c2的框架
  ☆23Jun 18, 2023Updated 2 years ago
• martabyte / Red-Team-Ops

  View on GitHub
  Notes about the YouTube playlist: Red Team Operations with Cobalt Strike (2019)
  ☆20Feb 16, 2021Updated 4 years ago
• augustd / burp-suite-swaggy

  View on GitHub
  Burp Suite extension for parsing Swagger web service definition files
  ☆19Jul 15, 2025Updated 7 months ago
• stavinski / showdown

  View on GitHub
  Perform OSINT on external targets using Shodan
  ☆23Feb 7, 2024Updated 2 years ago
• trickest / mksub

  View on GitHub
  Generate tens of thousands of subdomain combinations in a matter of seconds
  ☆273Sep 25, 2023Updated 2 years ago
• PettterWang / URLFUZZ

  View on GitHub
  URLFUZZ By T00ls.Net
  ☆24Jul 4, 2023Updated 2 years ago
• c3l3si4n / godeclutter

  View on GitHub
  Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.
  ☆59Jan 22, 2023Updated 3 years ago
• nullenc0de / paramhunter

  View on GitHub
  Looks for parameters in urls
  ☆34Oct 14, 2024Updated last year
• mathis2001 / ParamFirstCheck

  View on GitHub
  ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …
  ☆35Dec 13, 2023Updated 2 years ago
• e1abrador / Burp-IP-Tracker

  View on GitHub
  Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.
  ☆25Nov 2, 2025Updated 3 months ago
• s4hm4d / shodanidb

  View on GitHub
  Fetch data (open ports, CVEs, CPEs, ...) from shodan internetDB API
  ☆92Jan 9, 2023Updated 3 years ago
• sunny0day / burp-auto-drop

  View on GitHub
  Burp extension to automatically drop requests that match a certain regex.
  ☆10Mar 10, 2023Updated 2 years ago
• LinWin-Cloud / linwin-sploit

  View on GitHub
  LinwinSploit is a Penetration testing toolkit for Linux and android Termux. LinwinSploit是一款用于Linux和安卓Termux的渗透测试工具。 It can attac…
  ☆45Apr 13, 2023Updated 2 years ago
• lucsemassa / ad_share_enum

  View on GitHub
  Active Directory share enumeration tool
  ☆12Apr 28, 2025Updated 9 months ago
• dwisiswant0 / wadl-dumper

  View on GitHub
  Dump all available paths and/or endpoints on WADL file.
  ☆98Nov 24, 2025Updated 2 months ago
• danielthatcher / smuggles

  View on GitHub
  An HTTP request smuggling scanner designed to work at scale
  ☆24Oct 2, 2022Updated 3 years ago
• erikgeiser / govenom

  View on GitHub
  govenom is a msfvenom-inspired cross-platform payload generator toolkit written in Go
  ☆21Sep 9, 2020Updated 5 years ago
• arg2u / subrut

  View on GitHub
  The super fast tool for brute forcing subdomains
  ☆27Aug 22, 2022Updated 3 years ago