An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
☆1,290Jul 18, 2024Updated last year
Alternatives and similar repositories for webcopilot
Users that are interested in webcopilot are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,852Apr 17, 2026Updated 2 months ago
- SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty☆782Jun 21, 2026Updated 2 weeks ago
- Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. Th…☆266May 17, 2026Updated last month
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆3,578Feb 10, 2024Updated 2 years ago
- SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.☆1,366Jun 24, 2026Updated last week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆313Mar 31, 2024Updated 2 years ago
- 「🔑」A tool used to hunt down API key leaks in JS files and pages☆913Mar 12, 2026Updated 3 months ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,680Jun 11, 2026Updated 3 weeks ago
- A modern tool written in Python that automates your xss findings.☆480Nov 26, 2023Updated 2 years ago
- Open-source security research tool for identifying origin IP exposure of websites protected by Cloudflare and similar reverse proxy servi…☆2,171Jan 6, 2026Updated 5 months ago
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,569Mar 8, 2026Updated 3 months ago
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws☆4,037Oct 4, 2025Updated 9 months ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆7,743Updated this week
- Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.☆2,556Jun 25, 2026Updated last week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆149Feb 21, 2024Updated 2 years ago
- This Repositories contains list of One Liners with Descriptions and Installation requirements☆507Jun 28, 2025Updated last year
- MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilitie…☆1,041Jul 23, 2024Updated last year
- The useful exploit finder☆827Jan 19, 2026Updated 5 months ago
- NucleiScanner is a Powerful Automation tool for detecting Unknown Vulnerabilities in the Web Applications☆345Mar 26, 2025Updated last year
- Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality …☆695May 10, 2025Updated last year
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆286Mar 6, 2026Updated 3 months ago
- My Private Bug Hunting Methodology☆327Nov 27, 2024Updated last year
- 🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast…☆1,802Jun 21, 2026Updated 2 weeks ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- SQL Injection Vulnerability Scanner made with Python☆393Apr 15, 2026Updated 2 months ago
- AI-powered ffuf wrapper☆787Dec 4, 2025Updated 7 months ago
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆8,710Mar 21, 2026Updated 3 months ago
- Nucleimonst3r is a powerful vulnerability scanner that can help Bug Bounty Hunters find low hanging fruit vulnerabilities for known CVEs …☆259Apr 3, 2025Updated last year
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆2,184May 18, 2026Updated last month
- Automation for javascript recon in bug bounty.☆1,093Sep 9, 2023Updated 2 years ago
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆5,094Jun 28, 2026Updated last week
- how to look for Leaked Credentials !☆1,049May 6, 2024Updated 2 years ago
- A simple tool for bypassing file upload restrictions.☆903Jul 22, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- declutters url lists for crawling/pentesting☆1,567Feb 23, 2025Updated last year
- All about bug bounty (bypasses, payloads, and etc)☆6,782Sep 8, 2023Updated 2 years ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,849May 22, 2024Updated 2 years ago
- An XSS exploitation command-line interface and payload generator.☆1,436Jan 19, 2025Updated last year
- LFI-FINDER is an open-source tool available on GitHub that focuses on detecting Local File Inclusion (LFI) vulnerabilities☆300Jan 7, 2024Updated 2 years ago
- OSINT tool to crawl a site and extract useful recon info.☆462Aug 13, 2025Updated 10 months ago
- Discover and monitor internet assets using favicon hashes across search engines.☆251Oct 11, 2025Updated 8 months ago