jshunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying sensitive data, such as API endpoints and potential security vulnerabilities, making it an essential resource for and bug bounty hunters and security researchers.
☆495Jan 22, 2026Updated last month
Alternatives and similar repositories for JShunter
Users that are interested in JShunter are comparing it to the libraries listed below
Sorting:
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆63Feb 22, 2025Updated last year
- A high-performance Go-based tool for checking the availability and responsiveness of domains, utilizing both HTTP requests and browser au…☆93Nov 26, 2024Updated last year
- A passive way to find backups/ sensitive information.☆87Jul 10, 2025Updated 7 months ago
- best tool for finding SQLi,CRLF,XSS,LFi,OpenRedirect☆1,524Dec 7, 2025Updated 2 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆116Oct 18, 2024Updated last year
- Automation tool to testing and confirm the xss vulnerability.☆306Jul 18, 2025Updated 7 months ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆559Mar 8, 2025Updated 11 months ago
- An IIS short filename enumeration tool☆1,126Nov 25, 2024Updated last year
- Robofinder retrieves historical #robots.txt files from #Archive.org, allowing you to collect old directories and paths for any domain whi…☆232Nov 21, 2025Updated 3 months ago
- A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.☆851Jan 5, 2026Updated 2 months ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Jan 11, 2025Updated last year
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆311Mar 31, 2024Updated last year
- Url scrapper or extractor from alienvault☆38Mar 1, 2025Updated last year
- Header Exploitation HTTP☆711Feb 24, 2026Updated last week
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆723Updated this week
- Automate Recon XSS Bug Bounty☆178Updated this week
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,823Aug 20, 2025Updated 6 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆313May 16, 2024Updated last year
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,543Feb 7, 2026Updated 3 weeks ago
- All-in Fuzzer. Burp suite extension for auto fuzzing params, headers, body☆36Dec 13, 2025Updated 2 months ago
- ☆418Jan 13, 2026Updated last month
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆3,266Feb 10, 2024Updated 2 years ago
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆44Oct 27, 2024Updated last year
- This tools used for Automating finding of subdomain, and checking for alive subdomain, and gathering js files from all the subdomain and …☆22Jun 28, 2024Updated last year
- ☆13Oct 24, 2024Updated last year
- List of Directory Traversal/LFI Payloads Scraped from the Internet☆183Feb 10, 2025Updated last year
- High-Performance JavaScript Security Scanner - Process 1M URLs in ~5 hours with Telegram & Discord bot integration, Docker support, and c…☆171Oct 18, 2025Updated 4 months ago
- ☆38Dec 14, 2024Updated last year
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws☆3,925Oct 4, 2025Updated 5 months ago
- Automatic SSTI detection tool with interactive interface☆1,390Jan 17, 2026Updated last month
- ☆45Mar 5, 2025Updated last year
- how to look for Leaked Credentials !☆1,033May 6, 2024Updated last year
- AI-powered ffuf wrapper☆646Dec 4, 2025Updated 3 months ago
- ☆91Mar 17, 2025Updated 11 months ago
- Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.☆753Nov 19, 2025Updated 3 months ago
- ☆477Aug 21, 2025Updated 6 months ago
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆220Sep 25, 2025Updated 5 months ago
- Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist☆417Aug 25, 2024Updated last year
- i will upload more templates here to share with the comunity.☆567Apr 17, 2024Updated last year