π Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
β427Feb 20, 2026Updated 2 weeks ago
Alternatives and similar repositories for authz0
Users that are interested in authz0 are comparing it to the libraries listed below
Sorting:
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource loadβ297Sep 22, 2024Updated last year
- My fuzz repo!β22Jul 28, 2023Updated 2 years ago
- π Collection of regexp pattern for security passive scanningβ116Feb 18, 2023Updated 3 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerabilityβ953Dec 31, 2021Updated 4 years ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. π¦β659Aug 28, 2025Updated 6 months ago
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).β280Jan 15, 2025Updated last year
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,039Aug 23, 2025Updated 6 months ago
- β299Jul 16, 2022Updated 3 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hacβ¦β1,153Jan 21, 2026Updated last month
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!β978Jan 12, 2024Updated 2 years ago
- Fast and customizable vulnerability scanner For JIRA written in Pythonβ344Dec 31, 2024Updated last year
- π΄ββ οΈ Find dead-links (broken links)β167Updated this week
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirectsβ970Dec 8, 2021Updated 4 years ago
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secretsβ1,529Jan 15, 2026Updated last month
- Hidden parameters discovery suiteβ224Nov 14, 2022Updated 3 years ago
- Filter and enrich a list of subdomains by levelβ210Sep 25, 2023Updated 2 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violatiβ¦β395Feb 18, 2026Updated 2 weeks ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)β289Sep 26, 2023Updated 2 years ago
- CloudFlare Checker written in Goβ237May 12, 2024Updated last year
- Hidden parameters discovery suiteβ2,028Sep 8, 2024Updated last year
- π Enumerate git repository URL from list of URL / User / Org. Friendly to pipelineβ56Nov 24, 2024Updated last year
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlistβ1,497Jan 8, 2026Updated last month
- The format of various s3 buckets is convert in one format. for bugbounty and security testing.β87May 6, 2023Updated 2 years ago
- Scrape domain names from SSL certificates of arbitrary hostsβ689Mar 31, 2024Updated last year
- declutters url lists for crawling/pentestingβ1,531Feb 23, 2025Updated last year
- A fast tool to fetch URLs from HTML attributes by crawl-in.β262Jan 23, 2025Updated last year
- Gotator is a tool to generate DNS wordlists through permutations.β506Jul 17, 2022Updated 3 years ago
- Discover new target domains using Content Security Policyβ505Feb 7, 2026Updated 3 weeks ago
- β436Jun 1, 2021Updated 4 years ago
- Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.β134Jul 11, 2021Updated 4 years ago
- Generate tens of thousands of subdomain combinations in a matter of secondsβ273Sep 25, 2023Updated 2 years ago
- The Swiss Army knife for automated Web Application Testingβ2,323May 8, 2024Updated last year
- Quickly discover exposed hosts on the internet using multiple search engines.β2,827Feb 25, 2026Updated last week
- π« Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fastβ¦β1,519Updated this week
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.β89May 2, 2024Updated last year
- A repository that includes all the important wordlists used while bug hunting.β1,379Mar 11, 2023Updated 2 years ago
- This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilitiesβ31Jan 17, 2022Updated 4 years ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...β279Feb 11, 2021Updated 5 years ago
- A projectdiscovery driven attack surface monitoring bot powered by axiomβ189Aug 11, 2022Updated 3 years ago