d4rckh / vafLinks
Vaf is a cross-platform very advanced and fast web fuzzer written in nim
☆320Updated 3 years ago
Alternatives and similar repositories for vaf
Users that are interested in vaf are comparing it to the libraries listed below
Sorting:
- A blind XSS detection and XSS data capture framework☆172Updated this week
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆296Updated 9 months ago
- Prototype pollution scanner using headless chrome☆218Updated 2 years ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆511Updated 3 years ago
- Build your own reconnaissance system with Osmedeus Next Generation☆196Updated last week
- Complex payload encoder☆228Updated last year
- A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python☆198Updated 3 years ago
- Customisable and automated HTTP header injection☆253Updated 11 months ago
- ☆170Updated 3 years ago
- Http request smuggling vulnerability scanner☆227Updated 2 years ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆624Updated 2 years ago
- Get related domains / subdomains by looking at Google Analytics IDs☆246Updated 3 years ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆266Updated 2 years ago
- HTTP Request Smuggling Detection Tool☆512Updated last year
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆452Updated last year
- Web Application Security Testing Tools☆245Updated last year
- Hidden parameters discovery suite☆223Updated 2 years ago
- 🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).☆298Updated 8 months ago
- Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.☆322Updated 2 weeks ago
- A pentesting tool that dumps the source code from .git even when the directory traversal is disabled☆227Updated 3 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆481Updated 2 years ago
- Combined port scanning w/ Masscan's speed & Nmap's scanning features.☆153Updated 3 years ago
- Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.☆148Updated 2 years ago
- automated web assets enumeration & scanning [DEPRECATED]☆289Updated 2 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆381Updated 3 years ago
- Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…☆199Updated 3 weeks ago
- Common Web Managers Fuzz Wordlists☆175Updated 3 months ago
- Automate the scanning and enumeration of machines externally while maintaining complete control over scans shot to the target. Comfortabl…☆155Updated last week
- Python library and CLI for the Bug Bounty Recon API☆226Updated 4 years ago
- Turns any junk text into a usable wordlist for brute-forcing.☆221Updated last year