hahwul / dalfoxLinks
ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.
β4,617Updated this week
Alternatives and similar repositories for dalfox
Users that are interested in dalfox are comparing it to the libraries listed below
Sorting:
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,617Updated 9 months ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ2,896Updated last year
- Rockyou for web fuzzingβ2,929Updated 2 months ago
- The Swiss Army knife for automated Web Application Testingβ2,291Updated last year
- Fetch all the URLs that the Wayback Machine knows about for a domainβ4,158Updated last year
- Find domains and subdomains related to a given domainβ3,426Updated last year
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flawsβ3,755Updated 3 weeks ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β5,490Updated this week
- HTTP parameter discovery suite.β5,905Updated 8 months ago
- Contextual Content Discovery Toolβ2,987Updated last year
- Take a list of domains and probe for working HTTP and HTTPS serversβ3,059Updated last year
- A python script that finds endpoints in JavaScript filesβ4,151Updated last year
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,295Updated last year
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β6,836Updated last month
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ4,890Updated 10 months ago
- Automatic SSRF fuzzer and exploitation toolβ3,378Updated last month
- An OOB interaction gathering server and client libraryβ4,004Updated last week
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript filesβ2,290Updated last year
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,018Updated 11 months ago
- Gospider - Fast web spider written in Goβ2,792Updated last year
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug huβ¦β2,265Updated last year
- Automated & Manual Wordlists provided by Assetnoteβ1,550Updated this week
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, suβ¦β3,613Updated this week
- dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.β2,536Updated this week
- A fast tool to scan CRLF vulnerability written in Goβ1,479Updated 3 weeks ago
- BBT - Bug Bounty Tools (examplesπ‘)β1,851Updated last year
- A collection of hacks and one-off scriptsβ2,379Updated 7 months ago
- A simple script just made for self use for bypassing 403β1,980Updated last year
- "Can I take over XYZ?" β a list of services and how to claim (sub)domains with dangling DNS records.β5,403Updated 8 months ago
- Quickly discover exposed hosts on the internet using multiple search engines.β2,712Updated 2 weeks ago