bypass-url-parser
β1,115Feb 28, 2026Updated last week
Alternatives and similar repositories for bypass-url-parser
Users that are interested in bypass-url-parser are comparing it to the libraries listed below
Sorting:
- π« Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fastβ¦β1,519Feb 28, 2026Updated last week
- Hidden parameters discovery suiteβ2,028Sep 8, 2024Updated last year
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secretsβ1,529Jan 15, 2026Updated last month
- Rockyou for web fuzzingβ3,028Feb 11, 2026Updated 3 weeks ago
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applicationsβ1,294Aug 7, 2025Updated 6 months ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!β2,552Updated this week
- declutters url lists for crawling/pentestingβ1,531Feb 23, 2025Updated last year
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlistβ1,500Jan 8, 2026Updated last month
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!β978Jan 12, 2024Updated 2 years ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScriptβ1,773May 22, 2024Updated last year
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β1,024Feb 22, 2026Updated last week
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzerβ382May 19, 2023Updated 2 years ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.β89May 2, 2024Updated last year
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,039Aug 23, 2025Updated 6 months ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!β1,272Feb 27, 2026Updated last week
- This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contaiβ¦β534Dec 4, 2024Updated last year
- Awesome list of step by step techniques to achieve Remote Code Execution on various apps!β1,940Oct 7, 2023Updated 2 years ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable β¦β753Dec 19, 2023Updated 2 years ago
- 403/401 Bypass Methods + Bash Automation + Your Support ;)β1,574Jun 6, 2022Updated 3 years ago
- Smart context-based SSRF vulnerability scanner.β360May 5, 2022Updated 3 years ago
- Burp extension to create target specific and tailored wordlist from burp history.β256Dec 8, 2021Updated 4 years ago
- An IIS short filename enumeration toolβ1,126Nov 25, 2024Updated last year
- A repository that includes all the important wordlists used while bug hunting.β1,379Mar 11, 2023Updated 2 years ago
- β380May 17, 2023Updated 2 years ago
- Real-world infosec wordlists, updated regularlyβ1,642Updated this week
- Asset inventory of over 800 public bug bounty programs.β1,520Feb 14, 2025Updated last year
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,082Aug 14, 2024Updated last year
- i will upload more templates here to share with the comunity.β567Apr 17, 2024Updated last year
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,126Feb 23, 2026Updated last week
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,842Jan 1, 2025Updated last year
- 40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...β1,814Jul 3, 2023Updated 2 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hacβ¦β1,153Jan 21, 2026Updated last month
- HTTP parameter discovery suite.β6,109Feb 20, 2025Updated last year
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.β559Mar 8, 2025Updated 11 months ago
- A python script to scan for Apache Tomcat server vulnerabilities.β887Jan 12, 2026Updated last month
- Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests wβ¦β631Feb 22, 2026Updated last week
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,280Updated this week
- β250May 25, 2021Updated 4 years ago
- A cheat sheet that contains advanced queries for SQL Injection of all types.β3,154May 13, 2023Updated 2 years ago