Wayfiles is a tool designed to search for juicy files and URLs within a folder/file with results of tools like gau, waymore, waybackurls, etc.
☆16Feb 22, 2026Updated last week
Alternatives and similar repositories for wayfiles
Users that are interested in wayfiles are comparing it to the libraries listed below
Sorting:
- ☆19Dec 1, 2025Updated 3 months ago
- Web Crawler for Identifying Entry Points☆11Mar 26, 2024Updated last year
- bug bounty☆11Aug 13, 2023Updated 2 years ago
- WP Juicer Tool for quick scanning of confidential information on WordPress endpoints.☆10Apr 30, 2024Updated last year
- Blind XSS SVG☆10Mar 27, 2023Updated 2 years ago
- Downlaod all the nuclei Templates created from many Bug Hunters☆29May 25, 2023Updated 2 years ago
- Some simple scripts that I use during bug bounty hunting in Android Apps☆28Jan 30, 2025Updated last year
- Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection☆13Nov 1, 2024Updated last year
- Buggyapp is an vulnerable android application. This app can be used by pentesters, security researchers to practice Android application p…☆13Jun 4, 2022Updated 3 years ago
- This repository contains resources to learn blockchain technologies and blockchain hacking.☆16Apr 28, 2022Updated 3 years ago
- ☆12Jan 30, 2025Updated last year
- Used to get NTLMv2 Hashes from SMB☆23Oct 24, 2024Updated last year
- JaelesFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications☆22May 1, 2024Updated last year
- Passively check for XSS character encodings☆18Feb 7, 2026Updated 3 weeks ago
- I used the Templater community plugin in obsidian to automatically populate IP,username,password☆44Sep 11, 2023Updated 2 years ago
- TapJacking Attacks Demo☆20Apr 25, 2021Updated 4 years ago
- CVE-2025-55182 - React Server Components RCE Exploit & Scanner Supports external servers and CLI interface☆12Dec 5, 2025Updated 2 months ago
- Find The Admin Panel & SQL Injection Endpoints, Using Google Dorks !!!☆24Nov 15, 2024Updated last year
- URL Fuzzer☆20Nov 22, 2024Updated last year
- A repo for tools, utils, and wrappers that are to small to put in their own repo.☆23Mar 18, 2023Updated 2 years ago
- Simple script to test for clickjacking☆23Jun 21, 2021Updated 4 years ago
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆149Feb 21, 2024Updated 2 years ago
- A Burp Suite extension for analyzing Next.js Server Actions - server-side functions identified by hash IDs and `Next-Action` headers.☆47Aug 8, 2025Updated 6 months ago
- Fast Golang Tool To Get Cname For Domains and Subdomain☆16Feb 7, 2025Updated last year
- ☆22Jan 11, 2025Updated last year
- Returns results from Google search.☆50Dec 2, 2022Updated 3 years ago
- GoWC - Wildcard cleaner for MassDNS☆24Jun 10, 2022Updated 3 years ago
- undust is a URL pattern generator that helps uncover archived, backup, and temporary files left behind on web servers. Given a URL, it ge…☆52Jul 17, 2025Updated 7 months ago
- CVE-2022-41040 nuclei template☆19Oct 2, 2022Updated 3 years ago
- Custom Magisk Module that combines various other modules, such as Movecert and Frida☆24Jan 29, 2026Updated last month
- Analyze an APK archive.☆28Feb 24, 2024Updated 2 years ago
- Tiny library to parse the subdomain, domain, and tld extension from a host string☆23Apr 1, 2022Updated 3 years ago
- KakHunt is a python GUI Tool private tool which earns me 100s of bugs every month. It spawns URLS and filters Sensitive Info.☆49Apr 27, 2023Updated 2 years ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.☆27Jun 18, 2025Updated 8 months ago
- ☆27Jul 30, 2021Updated 4 years ago
- ☆64Mar 14, 2024Updated last year
- a shared short domain for XSS and other hacks☆32Mar 3, 2022Updated 4 years ago
- Resources for Mobile Application Testing 📓☆75Mar 30, 2024Updated last year
- Unauthorized Access to Metadata and User Data like CTF☆28Nov 30, 2024Updated last year