Alternatives and similar repositories for LostAndFound

Users that are interested in LostAndFound are comparing it to the libraries listed below

• c3l3si4n / thankunext
  Easily gather all routes related to a NextJs application through parsing of _buildManifest.js
  ☆67Updated 2 years ago
• c3l3si4n / quickcert
  A better way of querying certificate transparency logs
  ☆87Updated 7 months ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆149Updated 10 months ago
• beescuit / crosssiteshell
  A websocket-based reverse (javascript) shell for XSS attacks.
  ☆30Updated 3 years ago
• amirnsahmad / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆13Updated 3 months ago
• c3l3si4n / godeclutter
  Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.
  ☆58Updated 2 years ago
• c3l3si4n / revwhois
  CLI tool for discovering related base domains using WhoisXMLAPI's reverse Whois endpoints
  ☆11Updated last year
• ElSicarius / chunkloader
  A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs
  ☆73Updated 4 months ago
• c3l3si4n / crtdumper
  crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names fro…
  ☆29Updated last year
• assetnote / hopgoblin
  Adobe Experience Manager (AEM) hacking toolkit
  ☆88Updated last month
• wdahlenburg / VhostFinder
  Identify virtual hosts by similarity comparison
  ☆129Updated last year
• g4nkd / CacheDecepHound
  This tool is an efficient scanner designed to detect Cache Deception vulnerabilities in web servers. It automates the process of testing …
  ☆34Updated 6 months ago
• lauritzh / dead-domain-discovery
  This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…
  ☆54Updated 9 months ago
• simplylu / jpeg_polyglot_xss
  Exploiting XSS with Javascript/JPEG Polyglot (by @medusa_0xf)
  ☆21Updated 3 years ago
• Rhynorater / rebindMultiA
  ☆64Updated 2 years ago
• sunw4r / brburp
  burp extension for brazilian stuff
  ☆28Updated 2 years ago
• y0k4i-1337 / clairvoyancex
  Obtain GraphQL API schema despite disabled introspection!
  ☆72Updated 4 years ago
• dsecuredcom / ffufPostprocessing
  Golang tool which helps dropping the irrelevant entries from your ffuf result file.
  ☆140Updated last year
• PortSwigger / splitting-the-email-atom
  ☆85Updated 4 months ago
• hadriansecurity / sanicdns
  Gotta go fast
  ☆149Updated 4 months ago
• pdstat / graphqlextractor
  Extract GraphQL operations from javascript
  ☆21Updated 8 months ago
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆143Updated 7 months ago
• caido-community / workflows
  🛠️ Workflows created by the community
  ☆83Updated 3 weeks ago
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆36Updated 3 years ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆152Updated last year
• vrechson / copy-to-bcheck
  BurpSuite extension to convert requests into bcheck scripts
  ☆33Updated 2 years ago
• trufflesecurity / of-CORS
  ☆153Updated 2 years ago
• fransr / unpack-burp
  For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)
  ☆54Updated 8 months ago
• Lupin-Holmes / sandwich
  ☆70Updated last year
• caioluders / WBH
  Create subdomains and files wordlists from your browser history
  ☆12Updated 2 years ago