Helios: Automated XSS Testing
☆158Aug 3, 2024Updated last year
Alternatives and similar repositories for Helios
Users that are interested in Helios are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Process URLs and remove duplicate query parameters.☆27Mar 19, 2024Updated 2 years ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆36Nov 5, 2024Updated last year
- A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.☆30Oct 26, 2025Updated 4 months ago
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆78May 16, 2024Updated last year
- Looks for parameters in urls☆34Oct 14, 2024Updated last year
- OpenRedirector is a powerful automation tool for detecting Open Redirect vulnerabilities in web applications☆17Oct 30, 2025Updated 4 months ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆75Jun 12, 2025Updated 9 months ago
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆147Feb 21, 2024Updated 2 years ago
- ☆12Jul 4, 2024Updated last year
- Will attempt to retrieve DB details for FastAdmin instances☆69Aug 20, 2024Updated last year
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,826Aug 20, 2025Updated 7 months ago
- ☆131Aug 19, 2025Updated 7 months ago
- This tool will check for Sensitive Data Leakage with some useful patterns/RegEx. The patterns are mostly targeted on waybackdata and filt…☆229May 20, 2025Updated 10 months ago
- Automate Recon XSS Bug Bounty☆179Mar 9, 2026Updated 2 weeks ago
- CVE-2024-28955 Exploitation PoC☆34Jul 1, 2024Updated last year
- De-clutter a list of URLs☆385Mar 8, 2026Updated 2 weeks ago
- SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty☆740Jan 25, 2026Updated last month
- Discovering Typo Squatting on your domains!☆81Jul 30, 2024Updated last year
- ☆49Jul 8, 2025Updated 8 months ago
- ♥☆186Sep 7, 2025Updated 6 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques. It automates the process of discovering the real orig…☆171Feb 22, 2026Updated last month
- how to look for Leaked Credentials !☆1,035May 6, 2024Updated last year
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆795Updated this week
- This Repositories contains list of One Liners with Descriptions and Installation requirements☆502Jun 28, 2025Updated 8 months ago
- ☆185Mar 14, 2026Updated last week
- ☆11Apr 8, 2024Updated last year
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆32Jul 21, 2024Updated last year
- Header Exploitation HTTP☆723Updated this week
- Custom nuclei templates for bug hunting.....☆26May 30, 2024Updated last year
- CosmicSting (CVE-2024-34102)☆48Sep 5, 2024Updated last year
- ☆38Feb 9, 2025Updated last year
- SQLi Hunter is a tool designed to find potential SQL injection vulnerabilities by fetching URLs from the Wayback Machine and checking for…☆15Jun 4, 2025Updated 9 months ago
- Nafeed-Broken-Link: A Python tool designed to check for broken social media links on a given domain. This script crawls all accessible pa…☆66Aug 15, 2024Updated last year
- Scan for secrets, endpoints, and other sensitive data after decompiling and deobfuscating Android files. (.apk, .xapk, .dex, .jar, .class…☆301Jul 18, 2024Updated last year
- Template Nuclei SSTI☆34Nov 18, 2025Updated 4 months ago
- Advanced test for proxy & waf☆14Feb 10, 2026Updated last month
- A modern tool written in Python that automates your xss findings.☆470Nov 26, 2023Updated 2 years ago
- JSBerg is a fast and efficient URL scraper that extracts links, JavaScript files, CSS files, images, and inline URLs from a list of websi…☆23Mar 19, 2025Updated last year
- Finds graphql queries in javascript files☆69May 18, 2024Updated last year