devploit / debugHunter
Discover hidden debugging parameters and uncover web application secrets
☆240Updated last year
Alternatives and similar repositories for debugHunter
Users that are interested in debugHunter are comparing it to the libraries listed below
Sorting:
- Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using…☆151Updated last year
- Self-hosted passive subdomain continous monitoring tool.☆162Updated last year
- Make URL path combinations using a wordlist☆175Updated last year
- A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…☆161Updated last year
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆140Updated last year
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆243Updated 2 months ago
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆115Updated last year
- Real world bug bounty wordlists☆113Updated last year
- Wordlists handcrafted (and automated) with ♥☆219Updated 2 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆158Updated 5 months ago
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.☆240Updated 3 months ago
- A simple tool that helps to find assets/domains based on the Google Analytics ID.☆175Updated 4 months ago
- Turns any junk text into a usable wordlist for brute-forcing.☆220Updated last year
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆360Updated last year
- A rapid HTTP downgrade smuggling scanner written in Go.☆255Updated last year
- Prototype pollution scanner using headless chrome☆218Updated 2 years ago
- A Security Tool for Enumerating WebSockets☆347Updated 3 years ago
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆290Updated last year
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆273Updated last year
- Get related domains / subdomains by looking at Google Analytics IDs☆244Updated 2 years ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382Updated last year
- ☆168Updated 8 months ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆183Updated 2 years ago
- Build your own reconnaissance system with Osmedeus Next Generation☆191Updated 3 weeks ago
- Made your bugbounty subdomains reconnaissance easier with Hunt3r the web application reconnaissance framework☆167Updated 2 years ago
- Opensource assets and vulnerability scanning tool☆163Updated 3 months ago
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆118Updated 2 years ago
- Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templ…☆100Updated 2 months ago
- Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own☆71Updated last year
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆237Updated last year