Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
☆1,021Mar 21, 2025Updated last year
Alternatives and similar repositories for mantis
Users that are interested in mantis are comparing it to the libraries listed below
Sorting:
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆8,510Nov 16, 2025Updated 4 months ago
- Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.☆2,393Updated this week
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆900Mar 12, 2026Updated last week
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆795Updated this week
- SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.☆1,315Updated this week
- An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for …☆1,266Jul 18, 2024Updated last year
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆437Dec 30, 2025Updated 2 months ago
- The recursive internet scanner for hackers. 🧡☆9,513Updated this week
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆2,157Mar 8, 2026Updated 2 weeks ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,503Jan 8, 2026Updated 2 months ago
- LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and e…☆377Dec 5, 2023Updated 2 years ago
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆358Dec 14, 2023Updated 2 years ago
- JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the target…☆421Jan 31, 2026Updated last month
- A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automat…☆2,392Updated this week
- The Most Advanced Client-Side Prototype Pollution Scanner☆247Feb 3, 2026Updated last month
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆384May 19, 2023Updated 2 years ago
- Find subdomains with GPT, for free☆354Apr 18, 2024Updated last year
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws☆3,953Oct 4, 2025Updated 5 months ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆7,352Mar 13, 2026Updated last week
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,826Aug 20, 2025Updated 7 months ago
- An offensive data enrichment pipeline☆943Mar 10, 2026Updated last week
- AI-powered ffuf wrapper☆651Dec 4, 2025Updated 3 months ago
- Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more☆3,311Mar 7, 2026Updated 2 weeks ago
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆463Mar 28, 2024Updated last year
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆987Jan 12, 2024Updated 2 years ago
- Never forget where you inject.☆299Aug 15, 2025Updated 7 months ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,782May 22, 2024Updated last year
- ☆520Apr 29, 2024Updated last year
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,532Mar 8, 2026Updated last week
- ☆74Apr 8, 2024Updated last year
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆300Sep 8, 2023Updated 2 years ago
- secator - the pentester's swiss knife☆1,249Updated this week
- Hidden parameters discovery suite☆2,033Sep 8, 2024Updated last year
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,568Mar 8, 2026Updated last week
- Cobalt Strike BOFS☆16Dec 20, 2023Updated 2 years ago
- AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,☆732Mar 21, 2024Updated 2 years ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆90May 2, 2024Updated last year
- This Repositories contains list of One Liners with Descriptions and Installation requirements☆502Jun 28, 2025Updated 8 months ago
- 🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast…☆1,555Updated this week