Passive Web Vulnerability Detection Tool
☆37May 5, 2025Updated 10 months ago
Alternatives and similar repositories for Bystander
Users that are interested in Bystander are comparing it to the libraries listed below
Sorting:
- ☆14Nov 8, 2024Updated last year
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆44Oct 27, 2024Updated last year
- CrlfiX☆21Jan 30, 2025Updated last year
- Automated GitHub secret scanning with smart alerting & monitoring.☆30Jan 15, 2026Updated last month
- A passive way to find backups/ sensitive information.☆88Jul 10, 2025Updated 7 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆116Oct 18, 2024Updated last year
- ☆18Jul 21, 2025Updated 7 months ago
- Automation of some MAPT activities and interaction with the mobile Android device.☆22Sep 28, 2025Updated 5 months ago
- Nuclei templates for drupal vulns... far from perfect☆19Jan 9, 2025Updated last year
- List of Directory Traversal/LFI Payloads Scraped from the Internet☆183Feb 10, 2025Updated last year
- Fback is a tool that helps you create target-specific wordlists using a .json pattern.☆63Nov 21, 2025Updated 3 months ago
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…☆62Sep 4, 2024Updated last year
- Tool to fuzz for interesting vhost.☆23Jan 8, 2025Updated last year
- Burp Suite Extension for inserting a magic byte into responder's request☆24Sep 22, 2023Updated 2 years ago
- An Advanced Darkweb OSINT Tool☆24Jun 19, 2025Updated 8 months ago
- Generate a cross join, also known as a Cartesian product, from the lines of the specified files. This process is useful for creating fuzz…☆21Jun 29, 2023Updated 2 years ago
- 🔍 SubWatch – Automated Subdomain Monitoring Script☆40Jun 13, 2025Updated 8 months ago
- NetFuzzer is a comprehensive network security assessment tool for internal and external network components, including Host Machines, Fire…☆15Aug 4, 2025Updated 7 months ago
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆55Nov 21, 2025Updated 3 months ago
- ☆80Jun 4, 2025Updated 9 months ago
- This python based tool can be used to discover API keys, access tokens, and other sensitive data in JavaScript files. It can scan JavaScr…☆15Oct 18, 2024Updated last year
- Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution☆13Dec 2, 2024Updated last year
- Get related domains / subdomains by looking at Google Analytics IDs☆250Jun 3, 2022Updated 3 years ago
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆56Feb 2, 2025Updated last year
- collectvars collects JavaScript variables, highlights risky ones, and helps you understand code structure, while you casually browse.☆33Aug 28, 2024Updated last year
- Automated tool for domains & Subdomains Gathering☆14Feb 26, 2026Updated last week
- Saves pages to Wayback machine☆12Dec 2, 2024Updated last year
- Web Help Desk Hardcoded Credential Vulnerability (CVE-2024-28987)☆12Sep 5, 2024Updated last year
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆220Sep 25, 2025Updated 5 months ago
- JScripter is a Python script designed to scrape and save unique JavaScript files from a list of URLs or a single URL.☆29Nov 26, 2024Updated last year
- This GitHub Pages site serves as a creative demonstration of website defacement, featuring an engaging interface and audio elements. IT i…☆12Sep 25, 2024Updated last year
- Bug bounty bot for channel☆16Dec 10, 2022Updated 3 years ago
- Hey Guys I released this tools just for helping you guys do recon. This tool contain many other open source tools which you need to setup…☆12Aug 23, 2021Updated 4 years ago
- Yet another awesome fuzzers list☆15Oct 25, 2024Updated last year
- Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLs…☆12May 28, 2023Updated 2 years ago
- A comprehensive toolkit for ethical security testing of Cross-Site Scripting (XSS) vulnerabilities. Features a CLI tool for automated pay…☆16Jan 23, 2026Updated last month
- The Kill-The-Code Python Program provides a robust mechanism for remotely controlling code execution by monitoring a specified URL for a …☆18Aug 7, 2024Updated last year
- Paramix is a command-line tool for modifying the parameters of a list of URLs from stdin and returns them in stdout.☆17Aug 23, 2024Updated last year
- CVE-2024-50603: Aviatrix Controller Unauthenticated Command Injection☆17Jan 12, 2025Updated last year