Passive Web Vulnerability Detection Tool
☆38May 5, 2025Updated last year
Alternatives and similar repositories for Bystander
Users that are interested in Bystander are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆14Nov 8, 2024Updated last year
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆43Oct 27, 2024Updated last year
- CrlfiX☆22Jan 30, 2025Updated last year
- Automated GitHub secret scanning with smart alerting & monitoring.☆31Jan 15, 2026Updated 5 months ago
- A passive way to find backups/ sensitive information.☆92Jul 10, 2025Updated 11 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆17Jul 21, 2025Updated 11 months ago
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…☆62Sep 4, 2024Updated last year
- SubOwner - A Simple tool check for subdomain takeovers.☆118Oct 18, 2024Updated last year
- Burp Suite Extension for inserting a magic byte into responder's request☆24Sep 22, 2023Updated 2 years ago
- Tool to fuzz for interesting vhost.☆23Jan 8, 2025Updated last year
- List of Directory Traversal/LFI Payloads Scraped from the Internet☆184Feb 10, 2025Updated last year
- 🔍 SubWatch – Automated Subdomain Monitoring Script☆45Jun 13, 2025Updated last year
- Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution☆13Dec 2, 2024Updated last year
- An Automated Framework for End-to-End Blind XSS Detection and Reporting☆17Jan 23, 2026Updated 5 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆233Sep 25, 2025Updated 9 months ago
- Generate a cross join, also known as a Cartesian product, from the lines of the specified files. This process is useful for creating fuzz…☆21Jun 29, 2023Updated 3 years ago
- Nuclei templates for drupal vulns... far from perfect☆19Jan 9, 2025Updated last year
- collectvars collects JavaScript variables, highlights risky ones, and helps you understand code structure, while you casually browse.☆35Aug 28, 2024Updated last year
- ☆84Jun 2, 2026Updated last month
- Get some useful data from Clouds for your targets☆20Jun 28, 2026Updated last week
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆57Feb 2, 2025Updated last year
- AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.☆29Apr 30, 2025Updated last year
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆57Nov 21, 2025Updated 7 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- CORS Exploit POC for WordPress REST API☆10Oct 27, 2024Updated last year
- A utility for recursively traversing SSL/TLS certificates for collecting DNS names☆47Aug 26, 2023Updated 2 years ago
- Dump paths & pages from Next.js Manifest☆16Mar 19, 2024Updated 2 years ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆313May 16, 2024Updated 2 years ago
- Repo containing walkthroughs to possibly pwn Admin Panels and Exposed Consoles☆17Sep 20, 2024Updated last year
- Get related domains / subdomains by looking at Google Analytics IDs☆250Jun 3, 2022Updated 4 years ago
- Fback is a tool that helps you create target-specific wordlists using a .json pattern.☆65Nov 21, 2025Updated 7 months ago
- Contains nuclei templates for security testing and POCs.☆17Oct 19, 2024Updated last year
- ☆11Jun 25, 2026Updated 2 weeks ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- ☆15Dec 28, 2024Updated last year
- POC - CVE-2024–4956 - Nexus Repository Manager 3 Unauthenticated Path Traversal☆16Nov 26, 2024Updated last year
- A tool to slice URLs into directory levels☆20Jan 16, 2026Updated 5 months ago
- ☆42Jun 2, 2026Updated last month
- PoC for leaking text nodes via CSS injection☆26Jul 27, 2024Updated last year
- Header Exploitation HTTP☆755May 28, 2026Updated last month
- A Lightning-Fast DNS Resolver written in Rust 🦀☆70Nov 19, 2024Updated last year