errorfiathck / IDOR-Forge
IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.
☆108Updated last month
Alternatives and similar repositories for IDOR-Forge
Users that are interested in IDOR-Forge are comparing it to the libraries listed below
Sorting:
- A passive way to find backups/ sensitive information.☆78Updated 2 weeks ago
- SubOwner - A Simple tool check for subdomain takeovers.☆112Updated 6 months ago
- A Powerful Recon Engine☆63Updated 5 months ago
- ☆129Updated last month
- ☆119Updated last year
- ☆88Updated last month
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆114Updated 4 months ago
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆58Updated 2 months ago
- Welcome SecToolkit repository! This is a comprehensive collection of cybersecurity and bug bounty hunting topics. Here, you'll find a var…☆38Updated last week
- Private Nuclei Templates☆99Updated 2 months ago
- ☆162Updated 6 months ago
- Nuclei-AI-Prompts☆190Updated last month
- ☆148Updated 11 months ago
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆140Updated 6 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆70Updated 3 months ago
- This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer whil…☆49Updated 2 weeks ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆81Updated 4 months ago
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆59Updated 7 months ago
- A New Approach to Directory Bruteforce with WaybackLister v1.0☆75Updated this week
- 🪄 XSSDynaGen is a tool designed to analyze URLs with parameters, identify the characters allowed by the server, and generate advanced XS…☆51Updated 4 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆90Updated 9 months ago
- ZeusLeak is a browser extension that automatically detects leaked secrets and credentials in code while browsing.☆42Updated 2 months ago
- Automate Recon XSS Bug Bounty☆158Updated last week
- 🚀 XSSFUZZ - A tool for detecting XSS vulnerabilities in web applications.☆98Updated 8 months ago
- Grep subdomains from web pages.☆42Updated 3 months ago
- ☆57Updated 8 months ago
- AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…☆133Updated last year
- GoogleDorker - Unleash the power of Google dorking for ethical hackers with custom search precision.☆181Updated 4 months ago
- SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.☆160Updated last month
- SQLMutant is a powerful SQL injection testing tool that includes both passive and active reconnaissance processes for any given domain. I…☆148Updated 5 months ago