Bypass 4xx HTTP response status codes and more. The tool is based on Python Requests, PycURL, and HTTP Client.
β256Feb 25, 2026Updated last week
Alternatives and similar repositories for forbidden
Users that are interested in forbidden are comparing it to the libraries listed below
Sorting:
- πα΄ Κα΄Ι΄Ι’ Κα΄α΄ α΄Κsα΄ sΚα΄ΚΚπβ11Apr 28, 2022Updated 3 years ago
- A script for automatize boolean-based blind SQL injections (MVP).β54Aug 29, 2022Updated 3 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hacβ¦β1,153Jan 21, 2026Updated last month
- Yet another content discovery toolβ119Nov 16, 2024Updated last year
- π« Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fastβ¦β1,519Updated this week
- Jeeves SQLI Finderβ215May 13, 2022Updated 3 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violatiβ¦β395Feb 18, 2026Updated 2 weeks ago
- WRecon, is a tool for the recognition of vulnerabilities and blackbox information for wordpress.β19Nov 30, 2022Updated 3 years ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!β978Jan 12, 2024Updated 2 years ago
- 40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...β1,814Jul 3, 2023Updated 2 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource loadβ297Sep 22, 2024Updated last year
- Information Gathering tool - DNS / Subdomains / Ports / Directories enumerationβ1,197Jan 9, 2026Updated last month
- wsvuls - website vulnerability scanner detect issues [ outdated server software and insecure HTTP headers.]β57Mar 26, 2022Updated 3 years ago
- An XSS exploitation command-line interface and payload generator.β1,414Jan 19, 2025Updated last year
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlistβ1,497Jan 8, 2026Updated last month
- web application pentesting tools for dockerβ17Aug 9, 2022Updated 3 years ago
- β‘·β πππππ ππΈβ β’Ύ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)β940May 21, 2025Updated 9 months ago
- Small python script to look for common vulnerabilities on SMTP server.β48Dec 17, 2023Updated 2 years ago
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters andβ¦β802Jul 4, 2023Updated 2 years ago
- β59Apr 8, 2021Updated 4 years ago
- Automated Recon Tool Installerβ15Jun 29, 2022Updated 3 years ago
- Burpsuite Extension to bypass 403 restricted directoryβ1,673Jun 29, 2023Updated 2 years ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration testβ¦β427Feb 23, 2026Updated last week
- CLI tool for discovering related base domains using WhoisXMLAPI's reverse Whois endpointsβ12Jun 15, 2024Updated last year
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on itβ453Jan 9, 2024Updated 2 years ago
- A simple script just made for self use for bypassing 403β2,032May 30, 2024Updated last year
- This Python script can be used to bypass IP source restrictions using HTTP headers.β400Sep 16, 2025Updated 5 months ago
- 403/401 Bypass Methods + Bash Automation + Your Support ;)β1,573Jun 6, 2022Updated 3 years ago
- Perform OSINT on external targets using Shodanβ23Feb 7, 2024Updated 2 years ago
- Heuristic Vulnerable Parameter Scannerβ601Jan 8, 2024Updated 2 years ago
- Useful "Match and Replace" burpsuite rulesβ365Sep 26, 2023Updated 2 years ago
- Goblyn is a Python tool focused to enumeration and capture of website files metadata.β74Sep 11, 2021Updated 4 years ago
- Nuclei Templates to reproduce Cracking the lens's Researchβ132Jan 8, 2022Updated 4 years ago
- pentester payload ,info hunteβ10Apr 4, 2022Updated 3 years ago
- S3 bucket enumeratorβ30Apr 7, 2019Updated 6 years ago
- β932Jan 13, 2026Updated last month
- Cool One Liners at one place to make your recon and bug bounty skills better !β15Oct 3, 2020Updated 5 years ago
- β380May 17, 2023Updated 2 years ago
- Use favicons to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.β232Feb 2, 2026Updated last month