errorfiathck/IDOR-Forge external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

errorfiathck/IDOR-Forge

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/errorfiathck/IDOR-Forge)

Close

errorfiathck / IDOR-ForgeView on GitHubMore

• External links
• Readme badge

IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

☆226Sep 25, 2025Updated 8 months ago

Alternatives and similar repositories for IDOR-Forge

Users that are interested in IDOR-Forge are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• 6h4ack / IDOR-Scanner

  View on GitHub
  IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …
  ☆45Feb 24, 2025Updated last year
• anmolksachan / WayBackupFinder

  View on GitHub
  A passive way to find backups/ sensitive information.
  ☆92Jul 10, 2025Updated 10 months ago
• VFA250 / Morgan

  View on GitHub
  Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…
  ☆57Feb 2, 2025Updated last year
• ch1y0w0 / ParamScan

  View on GitHub
  ParamScan is a chrome extension for finding reflected parameters in a webpage.
  ☆92Jan 11, 2025Updated last year
• rootDR / ex-param

  View on GitHub
  ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…
  ☆60Feb 22, 2025Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• itsdivyanshjain / Bystander

  View on GitHub
  Passive Web Vulnerability Detection Tool
  ☆38May 5, 2025Updated last year
• hackersthan / grepsubsfromwebpages

  View on GitHub
  Grep subdomains from web pages.
  ☆42Feb 10, 2025Updated last year
• husseinphp / Hide-Search-Result

  View on GitHub
  ☆14Nov 8, 2024Updated last year
• coffinxp / loxs

  View on GitHub
  best tool for finding SQLi,CRLF,XSS,LFi,OpenRedirect
  ☆1,579Dec 7, 2025Updated 6 months ago
• MuhammadWaseem29 / SubDomain-Grabber

  View on GitHub
  ☆24Mar 22, 2025Updated last year
• iamunixtz / LazyXss

  View on GitHub
  Automation tool to testing and confirm the xss vulnerability.
  ☆306Jul 18, 2025Updated 10 months ago
• Spix0r / cloudrecon

  View on GitHub
  This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…
  ☆57Nov 21, 2025Updated 6 months ago
• hackvertor / repeat-strike

  View on GitHub
  ☆39Jul 1, 2025Updated 11 months ago
• w9w / JSA

  View on GitHub
  Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.
  ☆564Mar 8, 2025Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• ethicxlhuman / n8n-for-bug-bounty

  View on GitHub
  n8n workflows related to bug bounty
  ☆48Oct 27, 2025Updated 7 months ago
• iamunixtz / Lazy-Hunter

  View on GitHub
  LazyHunter is an automated reconnaissance tool designed for bug hunters, leveraging Shodan's InternetDB and CVEDB APIs
  ☆236Apr 5, 2025Updated last year
• c0dejump / HExHTTP

  View on GitHub
  Header Exploitation HTTP
  ☆751May 28, 2026Updated last week
• 1hehaq / greb

  View on GitHub
  Grab form parameters easily
  ☆14Dec 11, 2024Updated last year
• RevoltSecurities / Dnsprober

  View on GitHub
  dnsprober is a fast and multipurpose DNS reconnaissance tool designed for efficient DNS probing and enumeration. It supports multiple DNS…
  ☆36Jun 23, 2025Updated 11 months ago
• 0xJin / SubCerts

  View on GitHub
  SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.
  ☆75Jan 6, 2026Updated 5 months ago
• jthack / ffufai

  View on GitHub
  AI-powered ffuf wrapper
  ☆781Dec 4, 2025Updated 6 months ago
• ynsmroztas / CVE-2025-4123-Exploit-Tool-Grafana-

  View on GitHub
  CVE-2025-4123 - Grafana Tool
  ☆33Jun 4, 2025Updated last year
• securitycipher / awsome-websecurity-checklist

  View on GitHub
  ☆51Jul 31, 2024Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• xss0r / xssorRecon

  View on GitHub
  Automate Recon XSS Bug Bounty
  ☆186Mar 9, 2026Updated 3 months ago
• coffinxp / nuclei-templates

  View on GitHub
  ☆518Aug 21, 2025Updated 9 months ago
• RevoltSecurities / Dnsbruter

  View on GitHub
  Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…
  ☆126Dec 17, 2024Updated last year
• ifconfig-me / subowner

  View on GitHub
  SubOwner - A Simple tool check for subdomain takeovers.
  ☆118Oct 18, 2024Updated last year
• danialhalo / SqliSniper

  View on GitHub
  Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers
  ☆313Mar 31, 2024Updated 2 years ago
• reewardius / Nuclei-AI-Prompts

  View on GitHub
  Nuclei-AI-Prompts
  ☆364Jun 22, 2025Updated 11 months ago
• 0xSojalSec / sqlmap-ai

  View on GitHub
  This script automates SQL injection testing using SQLMap with AI-powered decision making.
  ☆29Jun 13, 2025Updated 11 months ago
• Spix0r / robofinder

  View on GitHub
  Robofinder retrieves historical #robots.txt files from #Archive.org, allowing you to collect old directories and paths for any domain whi…
  ☆244Nov 21, 2025Updated 6 months ago
• cc1a2b / JShunter

  View on GitHub
  jshunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying se…
  ☆523May 16, 2026Updated 3 weeks ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• Suryesh / OTX_AlienVault_URL

  View on GitHub
  Url scrapper or extractor from alienvault
  ☆39Mar 1, 2025Updated last year
• Spix0r / fback

  View on GitHub
  Fback is a tool that helps you create target-specific wordlists using a .json pattern.
  ☆64Nov 21, 2025Updated 6 months ago
• vaishalinagori / AutoCrypt-Burp-Extension

  View on GitHub
  ☆13Oct 24, 2024Updated last year
• RevoltSecurities / Crlfix

  View on GitHub
  CrlfiX
  ☆22Jan 30, 2025Updated last year
• huseyinstif / Nuclei-AI-Prompts

  View on GitHub
  ☆113Feb 20, 2025Updated last year
• 0dayhunter / Facebook-BugBounty-Writeups

  View on GitHub
  Collection of Facebook Bug Bounty Writeups
  ☆31Sep 16, 2023Updated 2 years ago
• iamthefrogy / frogy2.0

  View on GitHub
  Orbis is an full spectrum automated external attack surface intelligent toolkit.
  ☆352Mar 13, 2026Updated 2 months ago