Alternatives and similar repositories for ParamFinder

Users that are interested in ParamFinder are comparing it to the libraries listed below

• Tedixx / dmarc-subdomains
  Tool to parse subdomains from dmarc.live
  ☆148Updated last year
• TheArqsz / JSRecon-Buddy
  A simple browser extension to quickly find interesting security-related information on a webpage.
  ☆155Updated last week
• jthack / cewlai
  ai-based domain name generation
  ☆100Updated 11 months ago
• xssdoctor / graphqlMaker
  Finds graphql queries in javascript files
  ☆69Updated last year
• xhzeem / toxicache
  Go scanner to find web cache poisoning vulnerabilities in a list of URLs
  ☆147Updated last year
• sw33tLie / uff
  unleashed ffuf
  ☆233Updated 2 months ago
• xnl-h4ck3r / xnldorker
  Gather results of dorks across a number of search engines
  ☆190Updated last week
• vavkamil / js-snitch
  Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets
  ☆131Updated 11 months ago
• xnl-h4ck3r / webpaste
  Save your dorking results to the terminal. A modified version of TomNomNom's amazing tool!
  ☆97Updated 10 months ago
• ch1y0w0 / ParamScan
  ParamScan is a chrome extension for finding reflected parameters in a webpage.
  ☆92Updated last year
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆157Updated last year
• caido-community / quickssrf
  Detect SSRF within Caido
  ☆36Updated 2 weeks ago
• vitorfhc / gecko
  Chrome extension for automating CSPT discovery
  ☆124Updated 2 weeks ago
• ethicalhackingplayground / pathbuster
  A path-normalization pentesting tool.
  ☆135Updated 3 months ago
• g0ldencybersec / Caduceus
  ☆164Updated last year
• sametsahinnet / jsscm
  JSSCM detects expired domains for Stored XSS exploitation during browsing.
  ☆56Updated 9 months ago
• Nishantbhagat57 / backup-gen
  Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…
  ☆88Updated 6 months ago
• midoxnet / mapperplus
  MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
  ☆286Updated last year
• dsecuredcom / ffufPostprocessing
  Golang tool which helps dropping the irrelevant entries from your ffuf result file.
  ☆141Updated last year
• bebiksior / Caido403Bypasser
  403Bypasser is a simple plugin that lets you bypass 403 status code by transforming HTTP requests with custom templates.
  ☆96Updated 4 months ago
• Hackmanit / template-injection-playground
  The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…
  ☆56Updated last week
• lauritzh / dead-domain-discovery
  This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…
  ☆67Updated this week
• 0xKayala / Custom-Nuclei-Templates
  Community curated list of templates for the nuclei engine to find security vulnerabilities.
  ☆80Updated last month
• ynsmroztas / JSMap-Inspector
  **A powerful, offline, single-file HTML tool designed for developers and security researchers to inspect and analyze JavaScript Source Ma…
  ☆86Updated 2 months ago
• emadshanab / BChecks-Collection
  BChecks collection for Burp Suite Professional
  ☆101Updated last year
• assetnote / hopgoblin
  Adobe Experience Manager (AEM) hacking toolkit
  ☆101Updated 3 months ago
• Lupin-Holmes / sandwich
  ☆75Updated last year
• hahwul / smugglex
  Rust-powered HTTP Request Smuggling Scanner.
  ☆93Updated this week
• boobooHQ / private_templates
  Private Nuclei Templates
  ☆100Updated 10 months ago
• win3zz / Meta-Owned-IT-Assets
  Curated list of Meta (formerly Facebook) owned IT assets
  ☆55Updated 5 months ago