hahwul / dalfoxLinks
ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.
β4,749Updated this week
Alternatives and similar repositories for dalfox
Users that are interested in dalfox are comparing it to the libraries listed below
Sorting:
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ2,945Updated last year
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,743Updated 11 months ago
- Fetch all the URLs that the Wayback Machine knows about for a domainβ4,247Updated last year
- Find domains and subdomains related to a given domainβ3,470Updated last year
- Rockyou for web fuzzingβ2,975Updated 4 months ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β5,610Updated last week
- HTTP parameter discovery suite.β5,987Updated 10 months ago
- The Swiss Army knife for automated Web Application Testingβ2,309Updated last year
- Take a list of domains and probe for working HTTP and HTTPS serversβ3,074Updated last year
- dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.β2,603Updated last week
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,060Updated last year
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flawsβ3,831Updated 2 months ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug huβ¦β2,285Updated last year
- A python script that finds endpoints in JavaScript filesβ4,221Updated last year
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript filesβ2,344Updated last year
- Automatic SSRF fuzzer and exploitation toolβ3,438Updated 3 months ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,012Updated this week
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ4,964Updated last year
- Contextual Content Discovery Toolβ3,050Updated last year
- Gospider - Fast web spider written in Goβ2,844Updated last year
- An OOB interaction gathering server and client libraryβ4,088Updated last week
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, suβ¦β3,649Updated this week
- Automated & Manual Wordlists provided by Assetnoteβ1,585Updated last month
- Quickly discover exposed hosts on the internet using multiple search engines.β2,768Updated 3 weeks ago
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.β2,466Updated last year
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,318Updated last year
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β5,983Updated last year
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for β¦β3,588Updated this week
- An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!β2,185Updated last year
- A simple script just made for self use for bypassing 403β2,004Updated last year