Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
β53Oct 25, 2024Updated last year
Alternatives and similar repositories for hfinder
Users that are interested in hfinder are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A python3 script searching for secret on swaggerhubβ66Mar 22, 2022Updated 4 years ago
- SALSA πβ‘ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.β31Jan 26, 2025Updated last year
- Looks for parameters in urlsβ35Oct 14, 2024Updated last year
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter namesβ39May 5, 2024Updated 2 years ago
- Misc stuff from internetβ12Apr 13, 2026Updated 2 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This tool is a simple ffuf launcher which lets you select dynamically which wordlist and which extentions you want to fuzz.β10Mar 16, 2026Updated 3 months ago
- β145Mar 10, 2026Updated 3 months ago
- Results from analyzing data gathered from 1.6 billion subdomainsβ33Oct 15, 2024Updated last year
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.β59Jan 22, 2023Updated 3 years ago
- URL scanner for recon, vulnerabilities, secrets and more!β12Sep 27, 2021Updated 4 years ago
- Use favicons to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.β244Jun 3, 2026Updated 2 weeks ago
- Web cache poisoning vulnerability scanner.β75May 5, 2022Updated 4 years ago
- π Enumerate git repository URL from list of URL / User / Org. Friendly to pipelineβ55Nov 24, 2024Updated last year
- Hidden input parameters finderβ19Jul 10, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Dump paths & pages from Next.js Manifestβ16Mar 19, 2024Updated 2 years ago
- Process URLs and remove duplicate query parameters.β27Mar 19, 2024Updated 2 years ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"β18Jun 2, 2025Updated last year
- Get list of subsidiaries for a selected companyβ32Dec 21, 2024Updated last year
- Tool to query the RIPE databaseβ11Jun 2, 2025Updated last year
- JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various eβ¦β49Apr 29, 2024Updated 2 years ago
- A better way of querying certificate transparency logsβ90Mar 30, 2025Updated last year
- Discover new target domains using Content Security Policyβ514Jun 5, 2026Updated last week
- A Lightning-Fast DNS Resolver written in Rust π¦β70Nov 19, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization dataβ¦β62Sep 4, 2024Updated last year
- Resolvers updated daily for reconftwβ50Feb 7, 2023Updated 3 years ago
- Tool to fuzz for interesting vhost.β23Jan 8, 2025Updated last year
- AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.β29Apr 30, 2025Updated last year
- Caido's passive workflow to find potential leaked secrets, PII, and sensitive fields.β28Jan 13, 2025Updated last year
- Subdomains analysis and generation tool. Reveal the hidden!β243Jun 8, 2025Updated last year
- A CLI utility to scan S3 buckets permissionsβ14May 14, 2023Updated 3 years ago
- Advanced test for proxy & wafβ14Feb 10, 2026Updated 4 months ago
- An Automated Framework for End-to-End Blind XSS Detection and Reportingβ17Jan 23, 2026Updated 4 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer β’ AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluiceβ296Apr 9, 2024Updated 2 years ago
- SpecOps is a Burp Suite extension that ingests an OpenAPI or Swagger spec and instantly builds a workbench to test every documented endpoβ¦β31Mar 27, 2026Updated 2 months ago
- Network scannerβ46Apr 2, 2026Updated 2 months ago
- Reads in a list of domains or subdomains and crawls them for references to S3 bucketsβ10Nov 21, 2023Updated 2 years ago
- Simple python script to check against hypothetical JWT vulnerability.β51Nov 29, 2020Updated 5 years ago
- A rapid HTTP downgrade smuggling scanner written in Go.β312May 16, 2024Updated 2 years ago
- A command-line utility designed to recursively spider webpages for URLs. It works by actively traversing websites - following links embedβ¦β108Dec 8, 2025Updated 6 months ago