Alternatives and similar repositories for forbidden

Users that are interested in forbidden are comparing it to the libraries listed below

• trickest / mkpath
  Make URL path combinations using a wordlist
  ☆173Updated last year
• d3mondev / burp-vps-proxy
  This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.
  ☆244Updated 4 months ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆226Updated 2 months ago
• trickest / mksub
  Generate tens of thousands of subdomain combinations in a matter of seconds
  ☆268Updated last year
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆225Updated last year
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆241Updated 2 months ago
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆224Updated 2 years ago
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆196Updated last month
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆220Updated 11 months ago
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆374Updated last week
• zapstiko / wordlists
  All Type of Payloads
  ☆136Updated last year
• iamthefrogy / nerdbug
  Full Nuclei automation script with logic explanation.
  ☆246Updated 3 years ago
• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆295Updated 10 months ago
• carlospolop / fuzzhttpbypass
  This tool use fuuzzing to try to bypass unknown authentication methods, who knows...
  ☆250Updated last year
• silentsignal / burp-text4shell
  Text4Shell scanner for Burp Suite
  ☆191Updated 2 years ago
• emadshanab / Nmap-NSE-scripts-collection
  ☆171Updated 3 years ago
• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆119Updated 2 years ago
• edoardottt / favirecon
  Use favicons to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.
  ☆218Updated this week
• hisxo / JSpector
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆366Updated 2 years ago
• Fadavvi / Sub-Drill
  A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
  ☆114Updated 9 months ago
• mdsecresearch / BurpSuiteSharpener
  ☆521Updated 2 years ago
• ethicalhackingplayground / TProxer
  A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
  ☆180Updated 3 years ago
• daffainfo / match-replace-burp
  Useful "Match and Replace" burpsuite rules
  ☆349Updated last year
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆485Updated 3 years ago
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆275Updated 6 months ago
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆398Updated last week
• securebinary / firebaseExploiter
  FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…
  ☆163Updated 2 years ago
• daffainfo / bypass-403
  Go script for bypassing 403 forbidden
  ☆156Updated 4 years ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Updated last year
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆108Updated last year