Alternatives and similar repositories for headerpwn

Users that are interested in headerpwn are comparing it to the libraries listed below

• root-tanishq / userefuzz
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆382Updated last year
• jthack / ffufai
  AI-powered ffuf wrapper
  ☆478Updated 5 months ago
• devanshbatham / rayder
  A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows
  ☆290Updated last year
• lauritzh / domscan
  Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.
  ☆237Updated 3 months ago
• shreyaschavhan / advanced-sql-injection-for-awae
  ☆198Updated 3 months ago
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆650Updated 3 weeks ago
• SAPT01 / HBSQLI
  Automated Tool for Testing Header Based Blind SQL Injection
  ☆276Updated last year
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆351Updated 5 months ago
• Net-hunter121 / API-Wordlist
  ☆240Updated 3 years ago
• edoardottt / pphack
  The Most Advanced Client-Side Prototype Pollution Scanner
  ☆221Updated 3 weeks ago
• zzzteph / sheye
  Opensource assets and vulnerability scanning tool
  ☆163Updated 3 months ago
• midoxnet / mapperplus
  MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
  ☆170Updated 7 months ago
• xnl-h4ck3r / knoxnl
  This is a python wrapper around the amazing KNOXSS API by Brute Logic
  ☆262Updated last month
• intrudir / BypassFuzzer
  Fuzz 401/403/404 pages for bypasses
  ☆310Updated 4 months ago
• edoardottt / csprecon
  Discover new target domains using Content Security Policy
  ☆428Updated 2 weeks ago
• ayadim / Nuclei-bug-hunter
  i will upload more templates here to share with the comunity.
  ☆543Updated last year
• reewardius / bbFuzzing.txt
  ☆387Updated last week
• danialhalo / SqliSniper
  Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers
  ☆297Updated last year
• SirBugs / endext
  EndExt is a .go tool for extracting all the possible endpoints from the JS files
  ☆200Updated 9 months ago
• hakluke / hakip2host
  hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.
  ☆444Updated 3 years ago
• reewardius / Nuclei-AI-Prompts
  Nuclei-AI-Prompts
  ☆190Updated last month
• e1abrador / sub.Monitor
  Self-hosted passive subdomain continous monitoring tool.
  ☆162Updated last year
• hansmach1ne / LFImap
  Local File Inclusion discovery and exploitation tool
  ☆304Updated 4 months ago
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆304Updated 5 months ago
• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆237Updated last year
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆158Updated 5 months ago
• thecyberneh / scriptkiddi3
  Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using…
  ☆151Updated last year
• xnl-h4ck3r / urless
  De-clutter a list of URLs
  ☆338Updated 5 months ago
• HuntDownProject / HEDnsExtractor
  A suite for hunting suspicious targets, expose domains and phishing discovery
  ☆358Updated 2 weeks ago
• waf-bypass-maker / waf-community-bypasses
  ☆523Updated 10 months ago