Http request smuggling vulnerability scanner
β229Aug 11, 2022Updated 3 years ago
Alternatives and similar repositories for request_smuggler
Users that are interested in request_smuggler are comparing it to the libraries listed below
Sorting:
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. π¦β659Aug 28, 2025Updated 6 months ago
- Hidden parameters discovery suiteβ224Nov 14, 2022Updated 3 years ago
- Hidden parameters discovery suiteβ2,027Sep 8, 2024Updated last year
- β562Mar 27, 2025Updated 11 months ago
- Check whether the domain has a rate limit enabled.β66Aug 6, 2024Updated last year
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource loadβ297Sep 22, 2024Updated last year
- automated web assets enumeration & scanning [DEPRECATED]β288Mar 7, 2023Updated 2 years ago
- β299Jul 16, 2022Updated 3 years ago
- GH-Takeover β GitHub Pages Sub-domain Takeover Automation!β28Apr 17, 2021Updated 4 years ago
- IIS shortname scanner written in Goβ355Mar 25, 2023Updated 2 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.β156Nov 24, 2023Updated 2 years ago
- β59Apr 8, 2021Updated 4 years ago
- ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on scβ¦β321Feb 20, 2026Updated last week
- A tool to check a bunch of URLs that contain reflecting params.β598Aug 4, 2024Updated last year
- Monitoring framework to detect and report newly found subdomains on a specific target using various scanning toolsβ287Jul 13, 2024Updated last year
- Astra is a tool to find URLs and secrets inside a webpage/filesβ212Mar 14, 2023Updated 2 years ago
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters andβ¦β802Jul 4, 2023Updated 2 years ago
- Simple tools to handle string and generate subdomain permutationsβ15Jun 8, 2022Updated 3 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hacβ¦β1,153Jan 21, 2026Updated last month
- Full Nuclei automation script with logic explanation.β246Mar 26, 2022Updated 3 years ago
- You can read the writeup on this script hereβ274Jul 12, 2020Updated 5 years ago
- Simple S3 Bucket Testing Softwareβ31Nov 4, 2021Updated 4 years ago
- Automating XSS using Bashβ362Jan 27, 2026Updated last month
- Gotator is a tool to generate DNS wordlists through permutations.β505Jul 17, 2022Updated 3 years ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinationsβ394Jun 17, 2020Updated 5 years ago
- Host Header Injection Checkerβ84Mar 2, 2022Updated 4 years ago
- List of periodically validated public DNS resolversβ237Updated this week
- Tools to assess the DNS security of web applicationsβ127Oct 5, 2022Updated 3 years ago
- A tool to find redirection chains in multiple URLsβ78Jan 1, 2025Updated last year
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirectsβ970Dec 8, 2021Updated 4 years ago
- De-clutter a list of URLsβ386Feb 3, 2026Updated 3 weeks ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.β559Mar 8, 2025Updated 11 months ago
- Nuclei Templates to reproduce Cracking the lens's Researchβ132Jan 8, 2022Updated 4 years ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!β1,268Feb 23, 2026Updated last week
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secretsβ1,524Jan 15, 2026Updated last month
- Finding XSS during reconβ273Sep 13, 2022Updated 3 years ago
- Customisable and automated HTTP header injectionβ270Jun 27, 2024Updated last year
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3β2,062Jan 2, 2024Updated 2 years ago
- Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilitiesβ127Jun 4, 2023Updated 2 years ago