yataf extracts secrets and paths from files or urls - its best used against javascript files
☆52Sep 11, 2024Updated last year
Alternatives and similar repositories for yataf
Users that are interested in yataf are comparing it to the libraries listed below
Sorting:
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆141Sep 16, 2024Updated last year
- BOR - Break On Request, is a burp extension that provides a custom context menu for marking requests to be stopped by the interceptor wit…☆13Nov 18, 2022Updated 3 years ago
- A simple Google Protobuf Decoder for Burp☆43Nov 22, 2022Updated 3 years ago
- Combine words from two wordlist files and concatenate them with an optional delimiter☆39Sep 25, 2023Updated 2 years ago
- ☆20Sep 6, 2023Updated 2 years ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Oct 3, 2023Updated 2 years ago
- ☆12Jan 30, 2025Updated last year
- Tool to scan servers and hosts using dynamic paths.☆21Oct 1, 2025Updated 5 months ago
- Extract most frequent words in a list of subdomains☆13Feb 15, 2025Updated last year
- Provides an overview of the inner file structure of a PDF☆24Sep 26, 2022Updated 3 years ago
- Tool to fuzz for interesting vhost.☆24Jan 8, 2025Updated last year
- ☆30Jul 14, 2023Updated 2 years ago
- A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.☆62Nov 17, 2023Updated 2 years ago
- Pointer is a Fast Simple Lightweight Tool for Endpoint Discovery.☆14Dec 30, 2023Updated 2 years ago
- Filter and enrich a list of subdomains by level☆210Sep 25, 2023Updated 2 years ago
- Attempt zone transfers on domains☆18Jul 12, 2021Updated 4 years ago
- ☆105Jan 3, 2023Updated 3 years ago
- Recurrent Neural Network SubDomain Discovery Tool☆95Sep 20, 2022Updated 3 years ago
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.☆59Jan 22, 2023Updated 3 years ago
- Chameleon Wordlists☆15Sep 13, 2022Updated 3 years ago
- An extension to use Semgrep inside Burp Suite.☆88May 23, 2025Updated 9 months ago
- goverview - Get an overview of the list of URLs☆142Dec 5, 2025Updated 3 months ago
- CLI tool that extracts a regex pattern from a list of urls ( Rust )☆61Sep 14, 2022Updated 3 years ago
- A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.☆30Oct 26, 2025Updated 4 months ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Apr 1, 2023Updated 2 years ago
- Saves pages to Wayback machine☆12Dec 2, 2024Updated last year
- Passively check for XSS character encodings�☆18Mar 9, 2026Updated last week
- Additional active scan checks for BURP☆28Oct 3, 2024Updated last year
- [Custom || Automated] Curation & Collection of BugBounty Wordlists☆66Updated this week
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆82Feb 4, 2023Updated 3 years ago
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide☆43Dec 16, 2024Updated last year
- ☆65Dec 9, 2021Updated 4 years ago
- A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.☆55Jun 13, 2023Updated 2 years ago
- Black box fuzzer for web applications☆436Jul 20, 2025Updated 8 months ago
- List all public repositories for (valid) GitHub usernames☆76Sep 25, 2023Updated 2 years ago
- NotSoCereal: A Deserialization exploit playground☆54Jan 13, 2022Updated 4 years ago
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.☆35Jan 4, 2026Updated 2 months ago
- ☆24May 31, 2024Updated last year
- Detect Program Bug Bounty☆42Jun 12, 2025Updated 9 months ago