A fast tool to scan client-side prototype pollution vulnerability written in Rust. π¦
β660Aug 28, 2025Updated 6 months ago
Alternatives and similar repositories for ppfuzz
Users that are interested in ppfuzz are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Prototype Pollution Scannerβ139Apr 11, 2021Updated 4 years ago
- Prototype Pollution and useful Script Gadgetsβ1,601Jan 27, 2024Updated 2 years ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.β518Jun 22, 2022Updated 3 years ago
- Hidden parameters discovery suiteβ2,033Sep 8, 2024Updated last year
- Gotator is a tool to generate DNS wordlists through permutations.β508Jul 17, 2022Updated 3 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,039Aug 23, 2025Updated 7 months ago
- Client Side Prototype Pollution Scannerβ523Sep 17, 2022Updated 3 years ago
- Http request smuggling vulnerability scannerβ230Aug 11, 2022Updated 3 years ago
- A fast tool to scan CRLF vulnerability written in Goβ1,522Feb 23, 2026Updated last month
- Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.β134Jul 11, 2021Updated 4 years ago
- Adobe Experience Manager Vulnerability Scannerβ186May 22, 2023Updated 2 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource loadβ296Sep 22, 2024Updated last year
- β299Jul 16, 2022Updated 3 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hacβ¦β1,155Jan 21, 2026Updated 2 months ago
- De-clutter a list of URLsβ385Mar 8, 2026Updated 2 weeks ago
- Prototype pollution scanner using headless chromeβ217Jul 27, 2022Updated 3 years ago
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3β2,063Jan 2, 2024Updated 2 years ago
- Scrape domain names from SSL certificates of arbitrary hostsβ689Mar 31, 2024Updated last year
- β563Mar 27, 2025Updated 11 months ago
- BBT - Bug Bounty Tools (examplesπ‘)β1,885Apr 5, 2024Updated last year
- declutters url lists for crawling/pentestingβ1,538Feb 23, 2025Updated last year
- Scan only once by IP address and reduce scan times with Nmap for large amounts of data.β395Aug 2, 2025Updated 7 months ago
- Filter and enrich a list of subdomains by levelβ210Sep 25, 2023Updated 2 years ago
- A fuzzer for detecting open redirect vulnerabilitiesβ785Jul 1, 2024Updated last year
- A collection of awesome one-liner scripts especially for bug bounty tips.β3,084Jul 29, 2024Updated last year
- Secret and/or credential patterns used for gf.β243Feb 10, 2023Updated 3 years ago
- Automation for javascript recon in bug bounty.β1,069Sep 9, 2023Updated 2 years ago
- Making Favicon.ico based Recon Great again !β1,269Aug 29, 2023Updated 2 years ago
- Rust-based high performance domain permutation generator.β299Dec 2, 2023Updated 2 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.β156Nov 24, 2023Updated 2 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,409Sep 13, 2024Updated last year
- β810Jul 28, 2024Updated last year
- Find endpoints on GitHub.β215Mar 28, 2023Updated 2 years ago
- A tool to check a bunch of URLs that contain reflecting params.β597Aug 4, 2024Updated last year
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters andβ¦β804Jul 4, 2023Updated 2 years ago
- Generate tens of thousands of subdomain combinations in a matter of secondsβ273Sep 25, 2023Updated 2 years ago
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,140Feb 23, 2026Updated last month
- β437Jun 1, 2021Updated 4 years ago
- πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.β968Jan 10, 2025Updated last year