Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
β53Oct 25, 2024Updated last year
Alternatives and similar repositories for hfinder
Users that are interested in hfinder are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A python3 script searching for secret on swaggerhubβ66Mar 22, 2022Updated 4 years ago
- SALSA πβ‘ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.β29Jan 26, 2025Updated last year
- Looks for parameters in urlsβ34Oct 14, 2024Updated last year
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter namesβ39May 5, 2024Updated last year
- Misc stuff from internetβ12Updated this week
- Managed Database hosting by DigitalOcean β’ AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- This tool is a simple ffuf launcher which lets you select dynamically which wordlist and which extentions you want to fuzz.β10Mar 16, 2026Updated last month
- β144Mar 10, 2026Updated last month
- Results from analyzing data gathered from 1.6 billion subdomainsβ32Oct 15, 2024Updated last year
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.β59Jan 22, 2023Updated 3 years ago
- URL scanner for recon, vulnerabilities, secrets and more!β12Sep 27, 2021Updated 4 years ago
- Use favicons to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.β239Mar 26, 2026Updated 3 weeks ago
- Web cache poisoning vulnerability scanner.β75May 5, 2022Updated 3 years ago
- π Enumerate git repository URL from list of URL / User / Org. Friendly to pipelineβ56Nov 24, 2024Updated last year
- Hidden input parameters finderβ19Jul 10, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available β’ AdRun AI, ML, and HPC workloads on powerful cloud GPUsβwithout limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Dump paths & pages from Next.js Manifestβ15Mar 19, 2024Updated 2 years ago
- Process URLs and remove duplicate query parameters.β27Mar 19, 2024Updated 2 years ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"β17Jun 2, 2025Updated 10 months ago
- Get list of subsidiaries for a selected companyβ32Dec 21, 2024Updated last year
- Tool to query the RIPE databaseβ11Jun 2, 2025Updated 10 months ago
- JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various eβ¦β48Apr 29, 2024Updated last year
- A better way of querying certificate transparency logsβ90Mar 30, 2025Updated last year
- Discover new target domains using Content Security Policyβ512Mar 24, 2026Updated 3 weeks ago
- A Lightning-Fast DNS Resolver written in Rust π¦β69Nov 19, 2024Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI β’ AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization dataβ¦β62Sep 4, 2024Updated last year
- Resolvers updated daily for reconftwβ49Feb 7, 2023Updated 3 years ago
- Caido's passive workflow to find potential leaked secrets, PII, and sensitive fields.β26Jan 13, 2025Updated last year
- AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.β28Apr 30, 2025Updated 11 months ago
- Tool to fuzz for interesting vhost.β24Jan 8, 2025Updated last year
- Subdomains analysis and generation tool. Reveal the hidden!β245Jun 8, 2025Updated 10 months ago
- A CLI utility to scan S3 buckets permissionsβ14May 14, 2023Updated 2 years ago
- Advanced test for proxy & wafβ14Feb 10, 2026Updated 2 months ago
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluiceβ294Apr 9, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- An Automated Framework for End-to-End Blind XSS Detection and Reportingβ16Jan 23, 2026Updated 2 months ago
- Network scannerβ46Apr 2, 2026Updated 2 weeks ago
- SpecOps is a Burp Suite extension that ingests an OpenAPI or Swagger spec and instantly builds a workbench to test every documented endpoβ¦β32Mar 27, 2026Updated 3 weeks ago
- Reads in a list of domains or subdomains and crawls them for references to S3 bucketsβ10Nov 21, 2023Updated 2 years ago
- Simple python script to check against hypothetical JWT vulnerability.β51Nov 29, 2020Updated 5 years ago
- A rapid HTTP downgrade smuggling scanner written in Go.β313May 16, 2024Updated last year
- A command-line utility designed to recursively spider webpages for URLs. It works by actively traversing websites - following links embedβ¦β106Dec 8, 2025Updated 4 months ago