Alternatives and similar repositories for forbidden

Users that are interested in forbidden are comparing it to the libraries listed below

• d3mondev / burp-vps-proxy
  This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.
  ☆246Updated 10 months ago
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆203Updated 3 weeks ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆238Updated last month
• trickest / mksub
  Generate tens of thousands of subdomain combinations in a matter of seconds
  ☆273Updated 2 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆230Updated last year
• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆297Updated last year
• iamthefrogy / nerdbug
  Full Nuclei automation script with logic explanation.
  ☆246Updated 3 years ago
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆225Updated 3 years ago
• trickest / mkpath
  Make URL path combinations using a wordlist
  ☆169Updated 2 years ago
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆225Updated last year
• hisxo / JSpector
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆373Updated 2 years ago
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆281Updated last year
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆244Updated 8 months ago
• volkandindar / agartha
  A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
  ☆392Updated last week
• ethicalhackingplayground / TProxer
  A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
  ☆185Updated 4 years ago
• Fadavvi / Sub-Drill
  A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
  ☆116Updated last month
• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆121Updated 3 years ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆119Updated 2 years ago
• mdsecresearch / BurpSuiteSharpener
  ☆523Updated 2 years ago
• Th0h0 / autossrf
  Smart context-based SSRF vulnerability scanner.
  ☆361Updated 3 years ago
• edoardottt / favirecon
  Use favicons to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.
  ☆230Updated last week
• zapstiko / wordlists
  All Type of Payloads
  ☆141Updated last year
• daffainfo / match-replace-burp
  Useful "Match and Replace" burpsuite rules
  ☆362Updated 2 years ago
• Bandit-HaxUnit / haxunit
  ☆329Updated 6 months ago
• emadshanab / Nmap-NSE-scripts-collection
  ☆175Updated 3 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆311Updated last year
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆535Updated 2 years ago
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆503Updated 3 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated 2 years ago
• BitTheByte / Monitorizer
  Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
  ☆284Updated last year