Alternatives and similar repositories for headerpwn

Users that are interested in headerpwn are comparing it to the libraries listed below

• devanshbatham / rayder
  A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows
  ☆297Updated 2 years ago
• sw33tLie / uff
  unleashed ffuf
  ☆224Updated 4 months ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆382Updated 5 months ago
• edoardottt / pphack
  The Most Advanced Client-Side Prototype Pollution Scanner
  ☆239Updated this week
• lauritzh / domscan
  Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.
  ☆248Updated 8 months ago
• RikunjSindhwad / Task-Ninja
  Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!
  ☆153Updated last month
• root-tanishq / userefuzz
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆382Updated 2 years ago
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆321Updated 10 months ago
• jthack / ffufai
  AI-powered ffuf wrapper
  ☆544Updated 11 months ago
• zzzteph / sheye
  Opensource assets and vulnerability scanning tool
  ☆185Updated 4 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆306Updated last year
• edoardottt / csprecon
  Discover new target domains using Content Security Policy
  ☆484Updated this week
• BountySecurity / gbounty
  GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identif…
  ☆148Updated last month
• cosad3s / postleaks
  Search for sensitive data in Postman public library.
  ☆214Updated last month
• sysdig / wafer
  ☆214Updated last year
• musana / mx-takeover
  mx-takeover focuses DNS MX records and detects misconfigured MX records.
  ☆357Updated 2 years ago
• e1abrador / sub.Monitor
  Self-hosted passive subdomain continous monitoring tool.
  ☆167Updated last year
• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆241Updated 2 years ago
• hansmach1ne / LFImap
  Local File Inclusion discovery and exploitation tool
  ☆330Updated 9 months ago
• SAPT01 / HBSQLI
  Automated Tool for Testing Header Based Blind SQL Injection
  ☆289Updated 2 years ago
• az7rb / crt.sh
  Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.
  ☆250Updated last year
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆162Updated 10 months ago
• hakluke / hakip2host
  hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.
  ☆452Updated 3 years ago
• pikpikcu / nodesub
  Nodesub is a command-line tool for finding subdomains in bug bounty programs
  ☆148Updated last year
• SeifElsallamy / Blind-XSS-Manager
  Never forget where you inject.
  ☆287Updated 2 months ago
• nullenc0de / gofuzz
  ☆172Updated 2 months ago
• projectdiscovery / tldfinder
  A streamlined tool for discovering private TLDs for security research.
  ☆223Updated this week
• rs-loves-bugs / xsshunter
  ☆174Updated 2 months ago
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆702Updated last month
• SirBugs / endext
  EndExt is a .go tool for extracting all the possible endpoints from the JS files
  ☆216Updated last year