A fast tool to fetch URLs from HTML attributes by crawl-in.
☆262Jan 23, 2025Updated last year
Alternatives and similar repositories for galer
Users that are interested in galer are comparing it to the libraries listed below
Sorting:
- CloudFlare Checker written in Go☆237May 12, 2024Updated last year
- Dump all available paths and/or endpoints on WADL file.☆98Nov 24, 2025Updated 3 months ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆128Mar 2, 2022Updated 4 years ago
- Filter and enrich a list of subdomains by level☆208Sep 25, 2023Updated 2 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆453Jan 9, 2024Updated 2 years ago
- 🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline☆56Nov 24, 2024Updated last year
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆659Aug 28, 2025Updated 6 months ago
- A fast & light web screenshot without headless browser but Chrome DevTools Protocol!☆185Feb 23, 2026Updated 2 weeks ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆58Mar 2, 2022Updated 4 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆296Sep 22, 2024Updated last year
- A fast tool to scan CRLF vulnerability written in Go☆1,520Feb 23, 2026Updated 2 weeks ago
- Urls de-duplication tool for better recon.☆145May 29, 2025Updated 9 months ago
- Secret and/or credential patterns used for gf.☆243Feb 10, 2023Updated 3 years ago
- ☆145Jul 25, 2022Updated 3 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆507Jul 17, 2022Updated 3 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆109Mar 1, 2022Updated 4 years ago
- Tool to find JavaScript files on Websites☆528Nov 2, 2023Updated 2 years ago
- automated web assets enumeration & scanning [DEPRECATED]☆288Mar 7, 2023Updated 3 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆156Nov 24, 2023Updated 2 years ago
- Weaponizing Live CT logs for automated monitoring of assets☆133Sep 12, 2021Updated 4 years ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆426Feb 20, 2026Updated 2 weeks ago
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆301May 22, 2023Updated 2 years ago
- 🔭 Collection of regexp pattern for security passive scanning☆116Feb 18, 2023Updated 3 years ago
- ☆299Jul 16, 2022Updated 3 years ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆519Jun 22, 2022Updated 3 years ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆1,024Feb 22, 2026Updated 2 weeks ago
- Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…☆417Nov 24, 2020Updated 5 years ago
- A tool to test working urls.☆43Nov 17, 2020Updated 5 years ago
- Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥☆156Sep 18, 2023Updated 2 years ago
- Making Favicon.ico based Recon Great again !☆1,268Aug 29, 2023Updated 2 years ago
- You can read the writeup on this script here☆274Jul 12, 2020Updated 5 years ago
- Want to execute command repeatedly without workache? Here is shloop born for it!☆11Mar 2, 2022Updated 4 years ago
- Easily schedule commands to run multiple times at set intervals (like a cronjob, but with one command)☆84Apr 5, 2021Updated 4 years ago
- A golang utility to spider through a website searching for additional links.☆343Nov 7, 2020Updated 5 years ago
- Heuristic Vulnerable Parameter Scanner☆601Jan 8, 2024Updated 2 years ago
- goverview - Get an overview of the list of URLs☆142Dec 5, 2025Updated 3 months ago
- 0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover☆57Dec 15, 2020Updated 5 years ago
- A fuzzer made in golang for finding issues like xss, lfi, rce, ssti...that detects issues using change in content length and verify it us…☆62Oct 25, 2020Updated 5 years ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆559Mar 8, 2025Updated last year