Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
β53Oct 25, 2024Updated last year
Alternatives and similar repositories for hfinder
Users that are interested in hfinder are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A python3 script searching for secret on swaggerhubβ66Mar 22, 2022Updated 4 years ago
- SALSA πβ‘ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.β31Jan 26, 2025Updated last year
- Looks for parameters in urlsβ34Oct 14, 2024Updated last year
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter namesβ39May 5, 2024Updated 2 years ago
- Misc stuff from internetβ12Apr 13, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This tool is a simple ffuf launcher which lets you select dynamically which wordlist and which extentions you want to fuzz.β10Mar 16, 2026Updated 2 months ago
- β144Mar 10, 2026Updated 2 months ago
- Results from analyzing data gathered from 1.6 billion subdomainsβ32Oct 15, 2024Updated last year
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.β59Jan 22, 2023Updated 3 years ago
- URL scanner for recon, vulnerabilities, secrets and more!β12Sep 27, 2021Updated 4 years ago
- Use favicons to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.β242May 11, 2026Updated 2 weeks ago
- Web cache poisoning vulnerability scanner.β75May 5, 2022Updated 4 years ago
- π Enumerate git repository URL from list of URL / User / Org. Friendly to pipelineβ55Nov 24, 2024Updated last year
- Hidden input parameters finderβ19Jul 10, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Dump paths & pages from Next.js Manifestβ15Mar 19, 2024Updated 2 years ago
- Process URLs and remove duplicate query parameters.β27Mar 19, 2024Updated 2 years ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"β17Jun 2, 2025Updated 11 months ago
- Get list of subsidiaries for a selected companyβ32Dec 21, 2024Updated last year
- Tool to query the RIPE databaseβ11Jun 2, 2025Updated 11 months ago
- JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various eβ¦β49Apr 29, 2024Updated 2 years ago
- A better way of querying certificate transparency logsβ90Mar 30, 2025Updated last year
- Discover new target domains using Content Security Policyβ513Updated this week
- A Lightning-Fast DNS Resolver written in Rust π¦β69Nov 19, 2024Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI β’ AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization dataβ¦β62Sep 4, 2024Updated last year
- Resolvers updated daily for reconftwβ49Feb 7, 2023Updated 3 years ago
- Tool to fuzz for interesting vhost.β23Jan 8, 2025Updated last year
- AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.β28Apr 30, 2025Updated last year
- Caido's passive workflow to find potential leaked secrets, PII, and sensitive fields.β26Jan 13, 2025Updated last year
- Subdomains analysis and generation tool. Reveal the hidden!β243Jun 8, 2025Updated 11 months ago
- A CLI utility to scan S3 buckets permissionsβ14May 14, 2023Updated 3 years ago
- Advanced test for proxy & wafβ14Feb 10, 2026Updated 3 months ago
- An Automated Framework for End-to-End Blind XSS Detection and Reportingβ17Jan 23, 2026Updated 4 months ago
- AI Agents on DigitalOcean Gradient AI Platform β’ AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluiceβ294Apr 9, 2024Updated 2 years ago
- Network scannerβ46Apr 2, 2026Updated last month
- SpecOps is a Burp Suite extension that ingests an OpenAPI or Swagger spec and instantly builds a workbench to test every documented endpoβ¦β32Mar 27, 2026Updated 2 months ago
- Reads in a list of domains or subdomains and crawls them for references to S3 bucketsβ10Nov 21, 2023Updated 2 years ago
- Simple python script to check against hypothetical JWT vulnerability.β51Nov 29, 2020Updated 5 years ago
- A rapid HTTP downgrade smuggling scanner written in Go.β314May 16, 2024Updated 2 years ago
- A command-line utility designed to recursively spider webpages for URLs. It works by actively traversing websites - following links embedβ¦β108Dec 8, 2025Updated 5 months ago