Alternatives and similar repositories for FavFreak

Users that are interested in FavFreak are comparing it to the libraries listed below

• ayoubfathi / leaky-paths
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆1,006Updated last year
• AlephNullSK / dnsgen
  DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…
  ☆1,031Updated 11 months ago
• r0075h3ll / Oralyzer
  Open Redirection Analyzer
  ☆804Updated 2 years ago
• 1ndianl33t / Gf-Patterns
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,383Updated last year
• ksharinarayanan / SSRFire
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆968Updated 4 years ago
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆822Updated 5 months ago
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆1,055Updated 2 years ago
• tomnomnom / qsreplace
  Accept URLs on stdin, replace all query string values with a user-supplied value
  ☆852Updated 3 years ago
• chvancooten / BugBountyScanner
  A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
  ☆916Updated last month
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆781Updated last year
• projectdiscovery / chaos-client
  Go client to communicate with Chaos DB API.
  ☆801Updated last week
• projectdiscovery / shuffledns
  MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering…
  ☆1,543Updated this week
• R0X4R / Garud
  An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…
  ☆800Updated 2 years ago
• 003random / getJS
  A tool to fastly get all javascript sources/files
  ☆847Updated 5 months ago
• gwen001 / github-search
  A collection of tools to perform searches on GitHub.
  ☆1,453Updated 2 years ago
• chrislockard / api_wordlist
  A wordlist of API names for web application assessments
  ☆858Updated 6 months ago
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆2,040Updated last year
• tomnomnom / meg
  Fetch many paths for many hosts - without killing the hosts
  ☆1,685Updated last year
• s0md3v / uro
  declutters url lists for crawling/pentesting
  ☆1,501Updated 9 months ago
• yeswehack / PwnFox
  PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.
  ☆1,265Updated last year
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆961Updated 2 years ago
• s0md3v / Parth
  Heuristic Vulnerable Parameter Scanner
  ☆601Updated last year
• assetnote / commonspeak2
  Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
  ☆762Updated 2 years ago
• m8sec / subscraper
  Subdomain and target enumeration tool built for offensive security testing
  ☆924Updated last year
• hakluke / weaponised-XSS-payloads
  XSS payloads designed to turn alert(1) into P1
  ☆1,377Updated 2 years ago
• codingo / Interlace
  Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
  ☆1,276Updated 3 months ago
• Cgboal / SonarSearch
  A rapid API for the Project Sonar dataset
  ☆655Updated 2 years ago
• tomnomnom / unfurl
  Pull out bits of URLs provided on stdin
  ☆1,265Updated 2 years ago
• PentestPad / subzy
  Subdomain takeover vulnerability checker
  ☆1,468Updated last year
• dwisiswant0 / findom-xss
  A fast DOM based XSS vulnerability scanner with simplicity.
  ☆838Updated 3 years ago