Alternatives and similar repositories for 403-and-401-Bypass-Techniques

Users that are interested in 403-and-401-Bypass-Techniques are comparing it to the libraries listed below

• mmarting / unwaf
  Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…
  ☆98Updated 6 months ago
• xronyx / trishul
  ☆31Updated 8 months ago
• sh3bu / Portswigger_labs
  This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…
  ☆104Updated 6 months ago
• thecybersandeep / mobapp-storage-inspector
  A tool for inspecting and analyzing mobile application storage files.
  ☆49Updated 8 months ago
• anmolksachan / WayBackupFinder
  A passive way to find backups/ sensitive information.
  ☆88Updated 6 months ago
• 6h4ack / IDOR-Scanner
  IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …
  ☆42Updated 10 months ago
• itsdivyanshjain / Bystander
  Passive Web Vulnerability Detection Tool
  ☆37Updated 8 months ago
• freelancermijan / my-oneliners
  ☆36Updated last year
• six2dez / reconftw_ai
  AI/LLM local model integration for analysis of reconftw results
  ☆88Updated 8 months ago
• hackersthan / grepsubsfromwebpages
  Grep subdomains from web pages.
  ☆45Updated 11 months ago
• ifconfig-me / subowner
  SubOwner - A Simple tool check for subdomain takeovers.
  ☆117Updated last year
• j4k0m / MultiTapBurp
  A Burp Suite extension that helps track and manage multiple sessions simultaneously by color-coding HTTP requests based on custom pattern…
  ☆27Updated last year
• BugBountyzip / bugbounty.zip
  ☆78Updated 7 months ago
• YashVardhanTrip / nuclei-templates-initial-access
  A standalone collection of widely used technologies with default credentials enabled, which can be utilized for establishing an initial f…
  ☆20Updated last year
• hahwul / smugglex
  Rust-powered HTTP Request Smuggling Scanner.
  ☆95Updated this week
• yashfren / CPTS-Field-Manual
  ☆56Updated 3 months ago
• m14r41 / scan4secrets
  SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source c…
  ☆108Updated 4 months ago
• sherlock-ohm / burpscan
  ☆95Updated 9 months ago
• 0xAnuj / Blinks
  Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…
  ☆140Updated last year
• Hipapheralkus / AIAIAI
  An Incredibly Annoying, Insufferable Authentication Implementation
  ☆31Updated last year
• chaudharyarjun / JWTXposer
  An advanced JWT extraction & decoding tool for bug bounty hunters! 🏴‍☠️
  ☆45Updated 9 months ago
• DEMON1A / zzl
  Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges
  ☆44Updated last year
• 0xSojalSec / sqlmap-ai
  This script automates SQL injection testing using SQLMap with AI-powered decision making.
  ☆29Updated 7 months ago
• j4k0m / godkiller
  Vulnerabilities you my miss during a penetration testing.
  ☆97Updated last year
• reewardius / iis-pentest
  ☆82Updated 6 months ago
• RevoltSecurities / Crlfix
  CrlfiX
  ☆20Updated 11 months ago
• freelancermijan / reconengine
  A Powerful Recon Engine
  ☆67Updated last year
• assetnote / hopgoblin
  Adobe Experience Manager (AEM) hacking toolkit
  ☆102Updated 3 months ago
• TaurusOmar / reconbulk
  Automated Subdomain Enumeration and Scanning Tool
  ☆116Updated 2 years ago
• gatete / DomainTrail
  DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.
  ☆41Updated last year