hansmach1ne/LFImap

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hansmach1ne/LFImap)

hansmach1ne / LFImap

Local File Inclusion discovery and exploitation tool

☆330

Alternatives and similar repositories for LFImap

Users that are interested in LFImap are comparing it to the libraries listed below

Sorting:

mzfr / liffy
View on GitHub
Local file inclusion exploitation tool
☆930Oct 1, 2025Updated 5 months ago
vladko312 / SSTImap
View on GitHub
Automatic SSTI detection tool with interactive interface
☆1,406Jan 17, 2026Updated last month
R0X4R / bhedak
View on GitHub
A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.
☆109Mar 1, 2022Updated 4 years ago
trickest / find-gh-poc
View on GitHub
Find CVE PoCs on GitHub
☆161Aug 1, 2025Updated 7 months ago
ghsec / ghsec-jaeles-signatures
View on GitHub
Signatures for jaeles scanner by @j3ssie
☆117Apr 20, 2024Updated last year
xnl-h4ck3r / xnLinkFinder
View on GitHub
A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets
☆1,530Updated this week
clarkvoss / Nuclei-Templates
View on GitHub
☆87Aug 25, 2022Updated 3 years ago
xnl-h4ck3r / knoxnl
View on GitHub
This is a python wrapper around the amazing KNOXSS API by Brute Logic
☆284Jan 12, 2026Updated last month
HernanRodriguez1 / ScanMySQLiErrorBased-Nuclei
View on GitHub
☆21Aug 3, 2022Updated 3 years ago
swisskyrepo / SSRFmap
View on GitHub
Automatic SSRF fuzzer and exploitation tool
☆3,493Sep 4, 2025Updated 6 months ago
xnl-h4ck3r / urless
View on GitHub
De-clutter a list of URLs
☆385Feb 3, 2026Updated last month
devploit / nomore403
View on GitHub
🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast…
☆1,546Updated this week
bitquark / shortscan
View on GitHub
An IIS short filename enumeration tool
☆1,127Nov 25, 2024Updated last year
EasyRecon / Hunt3r
View on GitHub
Made your bugbounty subdomains reconnaissance easier with Hunt3r the web application reconnaissance framework
☆169Feb 4, 2023Updated 3 years ago
devanshbatham / OpenRedireX
View on GitHub
A fuzzer for detecting open redirect vulnerabilities
☆781Jul 1, 2024Updated last year
Raghavd3v / CRLFsuite
View on GitHub
The most powerful CRLF injection (HTTP Response Splitting) scanner.
☆592Oct 17, 2023Updated 2 years ago
hakluke / hakoriginfinder
View on GitHub
Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
☆985Jan 12, 2024Updated 2 years ago
dwisiswant0 / crlfuzz
View on GitHub
A fast tool to scan CRLF vulnerability written in Go
☆1,520Feb 23, 2026Updated 2 weeks ago
volkandindar / agartha
View on GitHub
A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
☆396Updated this week
edoardottt / csprecon
View on GitHub
Discover new target domains using Content Security Policy
☆507Feb 7, 2026Updated last month
Hackmanit / Web-Cache-Vulnerability-Scanner
View on GitHub
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
☆1,153Jan 21, 2026Updated last month
hahwul / dalfox
View on GitHub
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
☆4,859Feb 28, 2026Updated last week
xnl-h4ck3r / waymore
View on GitHub
Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!
☆2,552Updated this week
JoshMorrison99 / isXSS-Burp
View on GitHub
Passively check for XSS character encodings
☆18Mar 1, 2026Updated last week
s0md3v / uro
View on GitHub
declutters url lists for crawling/pentesting
☆1,532Feb 23, 2025Updated last year
nccgroup / jwt-reauth
View on GitHub
☆105Jan 3, 2023Updated 3 years ago
HernanRodriguez1 / ScanReflectedXSS
View on GitHub
☆46Nov 5, 2025Updated 4 months ago
eslam3kl / SQLiDetector
View on GitHub
Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests w…
☆631Feb 22, 2026Updated 2 weeks ago
MindPatch / lorsrf
View on GitHub
Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
☆296Sep 22, 2024Updated last year
ferreiraklet / Jeeves
View on GitHub
Jeeves SQLI Finder
☆215May 13, 2022Updated 3 years ago
projectdiscovery / fuzzing-templates
View on GitHub
Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
☆89May 2, 2024Updated last year
anshumanpattnaik / http-request-smuggling
View on GitHub
HTTP Request Smuggling Detection Tool
☆535Dec 21, 2023Updated 2 years ago
ferreiraklet / airixss
View on GitHub
Finding XSS during recon
☆273Sep 13, 2022Updated 3 years ago
MayankPandey01 / Jira-Lens
View on GitHub
Fast and customizable vulnerability scanner For JIRA written in Python
☆344Dec 31, 2024Updated last year
root-tanishq / userefuzz
View on GitHub
User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
☆382May 19, 2023Updated 2 years ago
bp0lr / gauplus
View on GitHub
☆299Jul 16, 2022Updated 3 years ago
xnl-h4ck3r / GAP-Burp-Extension
View on GitHub
Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
☆1,500Jan 8, 2026Updated 2 months ago
adrianlarion / pegaxss
View on GitHub
Magic Header Blind Xss tool (deliver blind xss payloads in request headers).
☆25May 30, 2021Updated 4 years ago
e1abrador / Burp-Encode-IP
View on GitHub
Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.
☆46Mar 4, 2024Updated 2 years ago