You can read the writeup on this script here
☆192Sep 30, 2021Updated 4 years ago
Alternatives and similar repositories for ffufplus
Users that are interested in ffufplus are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- You can read the writeup on this script here☆274Jul 12, 2020Updated 5 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆174Nov 11, 2020Updated 5 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆128Mar 2, 2022Updated 4 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆303Feb 12, 2023Updated 3 years ago
- Multiprocessing(Parallel)Subdomain Detect Script☆329Jan 28, 2024Updated 2 years ago
- Trying to make automated recon for bug bounties☆255May 3, 2021Updated 4 years ago
- Alias for storing ffuf results☆20May 23, 2020Updated 5 years ago
- sub domain wild card filtering tool☆40Apr 18, 2020Updated 5 years ago
- Tool to find JavaScript files on Websites☆527Nov 2, 2023Updated 2 years ago
- Python library and CLI for the Bug Bounty Recon API☆230Jun 5, 2021Updated 4 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆367Jul 23, 2022Updated 3 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,409Sep 13, 2024Updated last year
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆65Apr 13, 2021Updated 4 years ago
- Burp Extension written in Jython to hunt for common vulnerabilities found in websites. Developed by Gaurav Narwani to help people find vu…☆252Apr 27, 2020Updated 5 years ago
- My recon script☆50Dec 23, 2019Updated 6 years ago
- Signatures for jaeles scanner by @j3ssie☆117Apr 20, 2024Updated last year
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆223Jul 10, 2020Updated 5 years ago
- Fetches javascript file from a list of URLS or subdomains.☆839Jul 22, 2025Updated 8 months ago
- Various Payload wordlists☆240Apr 26, 2025Updated 10 months ago
- Hacked together script for feeding urls into Burp's Sitemap☆92Dec 7, 2025Updated 3 months ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆215May 13, 2019Updated 6 years ago
- ☆44Apr 30, 2021Updated 4 years ago
- Scripts to help with different ffuf tasks and workflows☆225Dec 24, 2023Updated 2 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆293Aug 23, 2019Updated 6 years ago
- Extract relative urls from a heap snapshot☆87May 30, 2021Updated 4 years ago
- List of periodically validated public DNS resolvers☆236Updated this week
- BBT - Bug Bounty Tools (examples💡)☆1,885Apr 5, 2024Updated last year
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆350Jun 17, 2023Updated 2 years ago
- The project contains multiple shell scripts for automating the tasks during recon.☆174Aug 21, 2023Updated 2 years ago
- Secret and/or credential patterns used for gf.☆243Feb 10, 2023Updated 3 years ago
- A tool to test working urls.☆43Nov 17, 2020Updated 5 years ago
- Horizontal Domain Discovery☆77May 22, 2023Updated 2 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆74Jan 4, 2021Updated 5 years ago
- ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.☆727May 6, 2022Updated 3 years ago
- Suite of programs meant to aid in bug hunting and security assessments☆77Dec 29, 2019Updated 6 years ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆279Feb 11, 2021Updated 5 years ago
- Random utilities from my security projects that might be useful to others☆183Jan 26, 2025Updated last year
- Extract endpoints marked as disallow in robots files to generate wordlists.☆58Mar 2, 2022Updated 4 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆156Nov 24, 2023Updated 2 years ago