Passive Web Vulnerability Detection Tool
☆37May 5, 2025Updated last year
Alternatives and similar repositories for Bystander
Users that are interested in Bystander are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆14Nov 8, 2024Updated last year
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆43Oct 27, 2024Updated last year
- CrlfiX☆22Jan 30, 2025Updated last year
- Automated GitHub secret scanning with smart alerting & monitoring.☆31Jan 15, 2026Updated 4 months ago
- A passive way to find backups/ sensitive information.☆92Jul 10, 2025Updated 10 months ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- ☆18Jul 21, 2025Updated 10 months ago
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…☆62Sep 4, 2024Updated last year
- SubOwner - A Simple tool check for subdomain takeovers.☆118Oct 18, 2024Updated last year
- Burp Suite Extension for inserting a magic byte into responder's request☆24Sep 22, 2023Updated 2 years ago
- Tool to fuzz for interesting vhost.☆23Jan 8, 2025Updated last year
- List of Directory Traversal/LFI Payloads Scraped from the Internet☆184Feb 10, 2025Updated last year
- 🔍 SubWatch – Automated Subdomain Monitoring Script☆45Jun 13, 2025Updated 11 months ago
- Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution☆13Dec 2, 2024Updated last year
- An Automated Framework for End-to-End Blind XSS Detection and Reporting☆17Jan 23, 2026Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆227Sep 25, 2025Updated 8 months ago
- Generate a cross join, also known as a Cartesian product, from the lines of the specified files. This process is useful for creating fuzz…☆21Jun 29, 2023Updated 2 years ago
- Nuclei templates for drupal vulns... far from perfect☆19Jan 9, 2025Updated last year
- collectvars collects JavaScript variables, highlights risky ones, and helps you understand code structure, while you casually browse.☆35Aug 28, 2024Updated last year
- ☆84May 14, 2026Updated 2 weeks ago
- Get some useful data from Clouds for your targets☆20May 17, 2026Updated last week
- AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.☆28Apr 30, 2025Updated last year
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆57Feb 2, 2025Updated last year
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆56Nov 21, 2025Updated 6 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- A utility for recursively traversing SSL/TLS certificates for collecting DNS names☆48Aug 26, 2023Updated 2 years ago
- Dump paths & pages from Next.js Manifest☆15Mar 19, 2024Updated 2 years ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆314May 16, 2024Updated 2 years ago
- Get related domains / subdomains by looking at Google Analytics IDs☆250Jun 3, 2022Updated 3 years ago
- Repo containing walkthroughs to possibly pwn Admin Panels and Exposed Consoles☆17Sep 20, 2024Updated last year
- Fback is a tool that helps you create target-specific wordlists using a .json pattern.☆64Nov 21, 2025Updated 6 months ago
- Contains nuclei templates for security testing and POCs.☆17Oct 19, 2024Updated last year
- ☆11May 12, 2026Updated 2 weeks ago
- ☆14Dec 28, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- POC - CVE-2024–4956 - Nexus Repository Manager 3 Unauthenticated Path Traversal☆16Nov 26, 2024Updated last year
- A tool to slice URLs into directory levels☆20Jan 16, 2026Updated 4 months ago
- ☆42Mar 21, 2026Updated 2 months ago
- PoC for leaking text nodes via CSS injection☆25Jul 27, 2024Updated last year
- Header Exploitation HTTP☆748Updated this week
- A Lightning-Fast DNS Resolver written in Rust 🦀☆69Nov 19, 2024Updated last year
- An Advanced Darkweb OSINT Tool☆24Jun 19, 2025Updated 11 months ago