Alternatives and similar repositories for apiguesser

Users that are interested in apiguesser are comparing it to the libraries listed below

• daffainfo / Git-Secret

  View on GitHub
  Go scripts for finding sensitive data like API key / some keywords in the github repository
  ☆157Jun 5, 2022Updated 3 years ago
• daffainfo / all-about-apikey

  View on GitHub
  Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)
  ☆287Sep 26, 2023Updated 2 years ago
• tegal1337 / XSS-Finder

  View on GitHub
  World's most Powerful and Advanced Cross Site Scripting Software
  ☆28Jan 5, 2020Updated 6 years ago
• Th3l0newolf / Desktop-WorkStation-Endpoint-Security-CheckList

  View on GitHub
  ☆15Jan 27, 2022Updated 4 years ago
• daffainfo / apiguesser-web

  View on GitHub
  Simple website to guess API Key / OAuth Token
  ☆48Aug 29, 2022Updated 3 years ago
• R0X4R / ssrf-tool

  View on GitHub
  An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.
  ☆45Feb 10, 2021Updated 5 years ago
• 0xAgun / All1

  View on GitHub
  Automated Recon Tool Installer
  ☆15Jun 29, 2022Updated 3 years ago
• MaakResearch / Recon

  View on GitHub
  About Recon Tools,Methodology and writeups
  ☆18Dec 16, 2023Updated 2 years ago
• boku7 / StockManagement-XSS-Login-CredHarvester

  View on GitHub
  Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Stock Management System v1.0 al…
  ☆21Mar 30, 2021Updated 4 years ago
• thelikes / fuzznav

  View on GitHub
  parse ffuf & map endpoints to wordlists
  ☆21Feb 25, 2021Updated 4 years ago
• honoki / burp-copy-regex-matches

  View on GitHub
  Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.
  ☆35Feb 12, 2022Updated 4 years ago
• threatsimgpt-AI / ThreatSimGPT

  View on GitHub
  ☆536Feb 3, 2026Updated last week
• MantisSTS / GoCloud

  View on GitHub
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆59Jan 10, 2023Updated 3 years ago
• boku7 / tailorMS-rXSS-Keylogger

  View on GitHub
  Reflected Cross-Site Scripting (XSS) vulnerability in 'index.php' login-portal webpage of SourceCodesters Tailor Management System v1.0 a…
  ☆25Sep 2, 2020Updated 5 years ago
• emadshanab / Multi_tools_subdomains

  View on GitHub
  ☆22Jul 16, 2021Updated 4 years ago
• Leoid / NonPublishedExploits

  View on GitHub
  A Collection of Proof of Concepts for non-published Web Exploits and Common CVEs
  ☆10Nov 29, 2020Updated 5 years ago
• daffainfo / match-replace-burp

  View on GitHub
  Useful "Match and Replace" burpsuite rules
  ☆362Sep 26, 2023Updated 2 years ago
• HernanRodriguez1 / ScanReflectedXSS

  View on GitHub
  ☆46Nov 5, 2025Updated 3 months ago
• daffainfo / my-nuclei-templates

  View on GitHub
  Some contributions in the nuclei-templates repository
  ☆62Jun 18, 2022Updated 3 years ago
• iamunixtz / jshunter-burp

  View on GitHub
  A powerful Burp Suite extension that automatically detects JavaScript URLs from HTTP traffic, scans them using TruffleHog for secrets det…
  ☆31Oct 23, 2025Updated 3 months ago
• Anof-cyber / apkleaks

  View on GitHub
  An python script that use apkleaks to scan the android application over web
  ☆11Jun 2, 2022Updated 3 years ago
• 0xt4144t / AwesomeAPIAttacksCheatsheet

  View on GitHub
  I was searching for such resource to work as cheat sheet series and guide me through different attack scenarios for API attacks, didn’t f…
  ☆15May 5, 2025Updated 9 months ago
• LcGk / Python-ReverseShell

  View on GitHub
  Python Reverse Shell Builder with some advanced functionalities
  ☆10Feb 16, 2021Updated 4 years ago
• IvanGlinkin / CVE-2006-3392

  View on GitHub
  This small script helps to avoid using MetaSploit (msfconsole) during the Enterprise pentests and OSCP-like exams. Grep included function…
  ☆14Mar 9, 2023Updated 2 years ago
• bilalmerokhel / bugbounty

  View on GitHub
  ☆27Jul 30, 2021Updated 4 years ago
• thelikes / gwdomains

  View on GitHub
  sub domain wild card filtering tool
  ☆40Apr 18, 2020Updated 5 years ago
• killmongar1996 / sqlTinj

  View on GitHub
  Automation: Bash script wrapper to find and verify time base sql injection
  ☆10Aug 25, 2022Updated 3 years ago
• thalysonz / pentest-flutter-guide

  View on GitHub
  Repository aimed at helping to perform pentests on flutter applications
  ☆17Jul 10, 2024Updated last year
• kdirectorate / browserscan

  View on GitHub
  Python application to scan user's installed browsers for secrets such as stored passwords and cookies.
  ☆14Jun 16, 2021Updated 4 years ago
• Spadille1337 / PortSwigger

  View on GitHub
  ☆11Oct 7, 2022Updated 3 years ago
• sahad-mk / Exploits

  View on GitHub
  Exploit scripts
  ☆12Apr 10, 2022Updated 3 years ago
• boku7 / gsCMS-CustomJS-Csrf2Xss2Rce

  View on GitHub
  GetSimple CMS Custom JS Plugin Exploit RCE Chain
  ☆11Mar 8, 2023Updated 2 years ago
• mamun-sec / Cryptoma

  View on GitHub
  ☆12Jun 24, 2022Updated 3 years ago
• thelikes / fuzzmost

  View on GitHub
  all manner of wordlists
  ☆24Jan 19, 2022Updated 4 years ago
• adamjsturge / xsshunter-express

  View on GitHub
  Archived Please go to https://github.com/adamjsturge/xsshunter-go
  ☆31Mar 7, 2024Updated last year
• ethicalhackerproject / TaiPan

  View on GitHub
  A GUI for MSF Venom that serves the generated payload for you, in addition to launching a listener using the provided port.
  ☆22Jul 26, 2020Updated 5 years ago
• RogueSMG / Scavenger

  View on GitHub
  Noobish Recon Automation
  ☆20Feb 15, 2024Updated 2 years ago
• adrianlarion / pegaxss

  View on GitHub
  Magic Header Blind Xss tool (deliver blind xss payloads in request headers).
  ☆26May 30, 2021Updated 4 years ago
• daffainfo / bypass-403

  View on GitHub
  Go script for bypassing 403 forbidden
  ☆158Aug 6, 2021Updated 4 years ago