lobuhi / byp4xx
40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...
☆1,630Updated last year
Related projects ⓘ
Alternatives and complementary repositories for byp4xx
- A simple script just made for self use for bypassing 403☆1,687Updated 5 months ago
- Rockyou for web fuzzing☆2,608Updated 2 months ago
- Making Favicon.ico based Recon Great again !☆1,121Updated last year
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.☆1,727Updated 5 months ago
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned ent…☆1,702Updated 2 months ago
- ☆852Updated 4 months ago
- Automated & Manual Wordlists provided by Assetnote☆1,311Updated 3 months ago
- A fast tool to scan CRLF vulnerability written in Go☆1,333Updated this week
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,017Updated 5 months ago
- A tool for adding new lines to files, skipping duplicates☆1,375Updated 9 months ago
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering…☆1,321Updated this week
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,209Updated last month
- Subdomain takeover vulnerability checker☆1,052Updated last month
- Fetch all the URLs that the Wayback Machine knows about for a domain☆3,535Updated 6 months ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆2,513Updated 4 months ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.☆3,982Updated last week
- declutters url lists for crawling/pentesting☆1,175Updated last week
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆1,812Updated 10 months ago
- BBT - Bug Bounty Tools (examples💡)☆1,714Updated 7 months ago
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,202Updated 3 months ago
- dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.☆2,177Updated this week
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!☆1,724Updated 4 months ago
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙☆1,707Updated 4 months ago
- 403/401 Bypass Methods + Bash Automation + Your Support ;)☆1,266Updated 2 years ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆936Updated 4 months ago
- Tool to bypass 403/40X response codes.☆1,107Updated 3 months ago
- A wrapper around grep, to help you grep for things☆1,812Updated 5 months ago
- Automation for javascript recon in bug bounty.☆895Updated last year
- XSS payloads designed to turn alert(1) into P1☆1,339Updated last year