Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
β53Oct 25, 2024Updated last year
Alternatives and similar repositories for hfinder
Users that are interested in hfinder are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A python3 script searching for secret on swaggerhubβ66Mar 22, 2022Updated 4 years ago
- SALSA πβ‘ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.β29Jan 26, 2025Updated last year
- Looks for parameters in urlsβ34Oct 14, 2024Updated last year
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter namesβ39May 5, 2024Updated 2 years ago
- Misc stuff from internetβ12Apr 13, 2026Updated 3 weeks ago
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- This tool is a simple ffuf launcher which lets you select dynamically which wordlist and which extentions you want to fuzz.β10Mar 16, 2026Updated last month
- β144Mar 10, 2026Updated last month
- Results from analyzing data gathered from 1.6 billion subdomainsβ32Oct 15, 2024Updated last year
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.β59Jan 22, 2023Updated 3 years ago
- URL scanner for recon, vulnerabilities, secrets and more!β12Sep 27, 2021Updated 4 years ago
- Use favicons to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.β241Apr 20, 2026Updated 2 weeks ago
- Web cache poisoning vulnerability scanner.β75May 5, 2022Updated 4 years ago
- π Enumerate git repository URL from list of URL / User / Org. Friendly to pipelineβ56Nov 24, 2024Updated last year
- Hidden input parameters finderβ19Jul 10, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient β’ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Dump paths & pages from Next.js Manifestβ15Mar 19, 2024Updated 2 years ago
- Process URLs and remove duplicate query parameters.β27Mar 19, 2024Updated 2 years ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"β17Jun 2, 2025Updated 11 months ago
- Get list of subsidiaries for a selected companyβ32Dec 21, 2024Updated last year
- Tool to query the RIPE databaseβ11Jun 2, 2025Updated 11 months ago
- JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various eβ¦β48Apr 29, 2024Updated 2 years ago
- A better way of querying certificate transparency logsβ90Mar 30, 2025Updated last year
- Discover new target domains using Content Security Policyβ513Apr 27, 2026Updated last week
- A Lightning-Fast DNS Resolver written in Rust π¦β69Nov 19, 2024Updated last year
- GPU virtual machines on DigitalOcean Gradient AI β’ AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization dataβ¦β62Sep 4, 2024Updated last year
- Resolvers updated daily for reconftwβ49Feb 7, 2023Updated 3 years ago
- Caido's passive workflow to find potential leaked secrets, PII, and sensitive fields.β26Jan 13, 2025Updated last year
- Tool to fuzz for interesting vhost.β23Jan 8, 2025Updated last year
- AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.β28Apr 30, 2025Updated last year
- Subdomains analysis and generation tool. Reveal the hidden!β245Jun 8, 2025Updated 11 months ago
- A CLI utility to scan S3 buckets permissionsβ14May 14, 2023Updated 2 years ago
- Advanced test for proxy & wafβ14Feb 10, 2026Updated 2 months ago
- An Automated Framework for End-to-End Blind XSS Detection and Reportingβ16Jan 23, 2026Updated 3 months ago
- GPU virtual machines on DigitalOcean Gradient AI β’ AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluiceβ294Apr 9, 2024Updated 2 years ago
- Network scannerβ46Apr 2, 2026Updated last month
- SpecOps is a Burp Suite extension that ingests an OpenAPI or Swagger spec and instantly builds a workbench to test every documented endpoβ¦β32Mar 27, 2026Updated last month
- Reads in a list of domains or subdomains and crawls them for references to S3 bucketsβ10Nov 21, 2023Updated 2 years ago
- Simple python script to check against hypothetical JWT vulnerability.β51Nov 29, 2020Updated 5 years ago
- A rapid HTTP downgrade smuggling scanner written in Go.β314May 16, 2024Updated last year
- A command-line utility designed to recursively spider webpages for URLs. It works by actively traversing websites - following links embedβ¦β107Dec 8, 2025Updated 5 months ago