m3n0sd0n4ld / GooFuzz
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
☆1,404Updated 9 months ago
Alternatives and similar repositories for GooFuzz:
Users that are interested in GooFuzz are comparing it to the libraries listed below
- The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information abo…☆1,497Updated 7 months ago
- An XSS exploitation command-line interface and payload generator.☆1,304Updated last month
- Generates millions of keyword-based password mutations in seconds.☆1,262Updated 6 months ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!☆1,900Updated 3 weeks ago
- Real-world infosec wordlists, updated regularly☆1,444Updated this week
- Useful Google Dorks for WebSecurity and Bug Bounty☆1,060Updated 10 months ago
- Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom …☆918Updated 3 weeks ago
- MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilitie…☆921Updated 6 months ago
- Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more☆1,618Updated last month
- A simple script just made for self use for bypassing 403☆1,825Updated 8 months ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,089Updated 8 months ago
- The fastest dork scanner written in Go.☆1,173Updated last year
- Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search …☆525Updated last year
- OffSec OSINT Pentest/RedTeam Tools☆909Updated 3 weeks ago
- Quickly discover exposed hosts on the internet using multiple search engines.☆2,523Updated 2 weeks ago
- All In One Web Recon☆2,360Updated 3 months ago
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,454Updated 3 weeks ago
- Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.☆1,516Updated 11 months ago
- Rockyou for web fuzzing☆2,707Updated last week
- Tool to bypass 403/40X response codes.☆1,178Updated last month
- OnionSearch is a script that scrapes urls on different .onion search engines.☆1,338Updated 6 months ago
- AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.☆972Updated 6 months ago
- Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration☆990Updated this week
- Python Tool that gives you the ability to run Advanced Google Queries (Known as Google Dorks - Google Dorking)☆1,136Updated last year
- A tool to quickly identify relevant, publicly-available open source intelligence ("OSINT") tools and resources, saving valuable time duri…☆660Updated 6 months ago
- 🐙 Track down GitHub users.☆879Updated 2 weeks ago
- List of Github repositories and articles with list of dorks for different search engines☆2,182Updated this week
- An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for …☆1,143Updated 7 months ago
- List of API's for gathering information about phone numbers, addresses, domains etc☆1,638Updated 4 months ago
- ☆610Updated 6 months ago