Roni-Carta / cf-bypass
☆81Updated 2 years ago
Related projects: ⓘ
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆139Updated last year
- Describe how to use ffuf different options with examples☆75Updated last year
- Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templ…☆91Updated last month
- A path-normalization pentesting tool.☆115Updated 11 months ago
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆95Updated last year
- A tool that automates the search for IDOR vulnerabilities in web apps and APIs☆47Updated 3 years ago
- ☆113Updated 2 years ago
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆175Updated 2 months ago
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆121Updated 7 months ago
- Enumerate Subdomains Through Google Dorks☆118Updated 3 years ago
- Identify virtual hosts by similarity comparison☆114Updated last month
- Private Nuclei Templates☆88Updated last year
- Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite☆74Updated last year
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆112Updated 6 months ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆100Updated 2 years ago
- Save your dorking results to the terminal. A modified version of TomNomNom's amazing tool!☆82Updated 7 months ago
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆88Updated last month
- Header Exploitation HTTP☆123Updated 2 weeks ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆80Updated 2 months ago
- ☆139Updated last year
- always updating☆83Updated 2 months ago
- ☆52Updated last month
- Simple tool to gather domains from crt.sh using the organization name☆97Updated 2 years ago
- ☆142Updated last year
- ☆233Updated 3 years ago
- Automated Subdomain Enumeration and Scanning Tool☆107Updated 11 months ago
- Gather results of dorks across a number of search engines☆74Updated 2 months ago
- ☆116Updated 3 years ago
- A Lightning-Fast DNS Resolver written in Rust 🦀☆62Updated 4 months ago
- ☆56Updated last year