m3n0sd0n4ld / GooFuzz
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
☆1,432Updated last year
Alternatives and similar repositories for GooFuzz
Users that are interested in GooFuzz are comparing it to the libraries listed below
Sorting:
- An XSS exploitation command-line interface and payload generator.☆1,365Updated 3 months ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X!☆2,051Updated last month
- The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information abo…☆1,588Updated 10 months ago
- The fastest dork scanner written in Go.☆1,202Updated last year
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,166Updated 11 months ago
- Real-world infosec wordlists, updated regularly☆1,497Updated this week
- Generates millions of keyword-based password mutations in seconds.☆1,302Updated 9 months ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,153Updated 10 months ago
- Quickly discover exposed hosts on the internet using multiple search engines.☆2,595Updated 2 weeks ago
- Useful Google Dorks for WebSecurity and Bug Bounty☆1,092Updated last year
- Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more☆1,668Updated last week
- uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or direc…☆826Updated 2 years ago
- OffSec OSINT Pentest/RedTeam Tools☆953Updated 3 months ago
- Rockyou for web fuzzing☆2,789Updated 2 weeks ago
- A simple script just made for self use for bypassing 403☆1,887Updated 11 months ago
- MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilitie…☆969Updated 9 months ago
- A simple tool for bypassing file upload restrictions.☆848Updated 9 months ago
- OSINT tools and more but without API key☆1,330Updated last year
- 🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast…☆1,244Updated 3 weeks ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆2,718Updated 10 months ago
- how to look for Leaked Credentials !☆937Updated last year
- Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration☆1,006Updated last week
- This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 …☆2,335Updated 5 months ago
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,530Updated last month
- AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.☆989Updated 9 months ago
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned ent…☆1,865Updated 5 months ago
- Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.☆1,439Updated 2 years ago
- ⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)☆852Updated last month
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,329Updated 3 weeks ago
- Python Tool that gives you the ability to run Advanced Google Queries (Known as Google Dorks - Google Dorking)☆1,168Updated last year