☆83Mar 26, 2024Updated 2 years ago
Alternatives and similar repositories for sandwich
Users that are interested in sandwich are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Let's check if your target is vulnerable for client side prototype pollution.☆65Jan 9, 2024Updated 2 years ago
- JsValidator is a tool created for validating the JS files after crawlling it from waybackurls☆21Mar 13, 2023Updated 3 years ago
- DepFine Is a tool to find the unregistered dependency based on dependency confusion valunerablility and lead to RCE☆28Nov 28, 2021Updated 4 years ago
- BugBounty , sort and delete duplicates param value without missing original value☆22Jul 31, 2021Updated 4 years ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆149Dec 9, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A Multi-Processing Tool for collecting and extracting information to an Excel file from a Burp Suite output file.☆10Apr 8, 2024Updated 2 years ago
- Generate tens of thousands of subdomain combinations in a matter of seconds☆276Sep 25, 2023Updated 2 years ago
- 🎉 CVE Monitor v1.0☆27Jun 30, 2025Updated 10 months ago
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…☆441Apr 24, 2026Updated 2 weeks ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,824May 22, 2024Updated last year
- ☆18Jun 24, 2021Updated 4 years ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆400Jun 17, 2020Updated 5 years ago
- My own Custom nuclei templates☆26Dec 8, 2021Updated 4 years ago
- De-clutter a list of URLs☆387Mar 8, 2026Updated 2 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆41Aug 12, 2023Updated 2 years ago
- Save your dorking results to the terminal. A modified version of TomNomNom's amazing tool!☆99Mar 4, 2025Updated last year
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆758Dec 19, 2023Updated 2 years ago
- ☆153Nov 27, 2021Updated 4 years ago
- jxscout superpowers JavaScript analysis for security researchers☆453Apr 12, 2026Updated 3 weeks ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,512Jan 8, 2026Updated 4 months ago
- In Detail Methodology of How I perform Web Pentesting☆10Oct 18, 2025Updated 6 months ago
- Some of the gf patterns which i use☆44Jan 19, 2022Updated 4 years ago
- Subdomain Monitor A production-ready subdomain monitoring system with both API and CLI interfaces.☆74Apr 21, 2026Updated 2 weeks ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- check if the source code compressed and uploaded to the server by mistake☆10Feb 21, 2022Updated 4 years ago
- ☆64Mar 1, 2023Updated 3 years ago
- Web cache poisoning vulnerability scanner.☆75May 5, 2022Updated 4 years ago
- ☆141Nov 9, 2024Updated last year
- Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite☆79Jan 13, 2023Updated 3 years ago
- Burp plugin for jxscout☆21May 12, 2025Updated 11 months ago
- ☆82Apr 13, 2026Updated 3 weeks ago
- unleashed ffuf☆249Oct 29, 2025Updated 6 months ago
- A tool to check a bunch of URLs that contain reflecting params.☆598Aug 4, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a …☆1,565Apr 21, 2026Updated 2 weeks ago
- Hidden parameters discovery suite☆2,052Sep 8, 2024Updated last year
- ☆15May 6, 2023Updated 3 years ago
- Automated blind-xss search for Burp Suite☆22Mar 28, 2022Updated 4 years ago
- Open Redirect scanner - (out of date)☆28Nov 27, 2022Updated 3 years ago
- Bash script to extract data from the Waybackmachine☆11Mar 15, 2021Updated 5 years ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,371Apr 23, 2026Updated 2 weeks ago