IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.
☆226Sep 25, 2025Updated 7 months ago
Alternatives and similar repositories for IDOR-Forge
Users that are interested in IDOR-Forge are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆45Feb 24, 2025Updated last year
- A passive way to find backups/ sensitive information.☆92Jul 10, 2025Updated 10 months ago
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆57Feb 2, 2025Updated last year
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Jan 11, 2025Updated last year
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆62Feb 22, 2025Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Passive Web Vulnerability Detection Tool☆37May 5, 2025Updated last year
- Grep subdomains from web pages.☆42Feb 10, 2025Updated last year
- ☆14Nov 8, 2024Updated last year
- best tool for finding SQLi,CRLF,XSS,LFi,OpenRedirect☆1,568Dec 7, 2025Updated 5 months ago
- ☆24Mar 22, 2025Updated last year
- Automation tool to testing and confirm the xss vulnerability.☆308Jul 18, 2025Updated 10 months ago
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆56Nov 21, 2025Updated 5 months ago
- ☆39Jul 1, 2025Updated 10 months ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆561Mar 8, 2025Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- n8n workflows related to bug bounty☆48Oct 27, 2025Updated 6 months ago
- Grab form parameters easily☆14Dec 11, 2024Updated last year
- Header Exploitation HTTP☆742May 8, 2026Updated last week
- dnsprober is a fast and multipurpose DNS reconnaissance tool designed for efficient DNS probing and enumeration. It supports multiple DNS…☆36Jun 23, 2025Updated 10 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆75Jan 6, 2026Updated 4 months ago
- LazyHunter is an automated reconnaissance tool designed for bug hunters, leveraging Shodan's InternetDB and CVEDB APIs☆236Apr 5, 2025Updated last year
- AI-powered ffuf wrapper☆776Dec 4, 2025Updated 5 months ago
- CVE-2025-4123 - Grafana Tool☆32Jun 4, 2025Updated 11 months ago
- ☆50Jul 31, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Automate Recon XSS Bug Bounty☆185Mar 9, 2026Updated 2 months ago
- ☆516Aug 21, 2025Updated 9 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆126Dec 17, 2024Updated last year
- Nuclei-AI-Prompts☆362Jun 22, 2025Updated 10 months ago
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆313Mar 31, 2024Updated 2 years ago
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆29Jun 13, 2025Updated 11 months ago
- Robofinder retrieves historical #robots.txt files from #Archive.org, allowing you to collect old directories and paths for any domain whi…☆243Nov 21, 2025Updated 5 months ago
- jshunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying se…☆515Updated this week
- Url scrapper or extractor from alienvault☆39Mar 1, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Fback is a tool that helps you create target-specific wordlists using a .json pattern.☆64Nov 21, 2025Updated 5 months ago
- ☆13Oct 24, 2024Updated last year
- CrlfiX☆22Jan 30, 2025Updated last year
- ☆113Feb 20, 2025Updated last year
- Collection of Facebook Bug Bounty Writeups☆31Sep 16, 2023Updated 2 years ago
- Orbis is an full spectrum automated external attack surface intelligent toolkit.☆345Mar 13, 2026Updated 2 months ago
- SAPLAR - LFI & Path Traversal Scanner☆15Mar 11, 2025Updated last year