GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
☆1,554Dec 21, 2025Updated 2 months ago
Alternatives and similar repositories for GooFuzz
Users that are interested in GooFuzz are comparing it to the libraries listed below
Sorting:
- An XSS exploitation command-line interface and payload generator.☆1,414Jan 19, 2025Updated last year
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,529Jan 15, 2026Updated last month
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,552Updated this week
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆7,280Updated this week
- Rockyou for web fuzzing☆3,028Feb 11, 2026Updated 3 weeks ago
- bypass-url-parser☆1,115Updated this week
- OSINT tools and more but without API key☆1,484Feb 15, 2026Updated 2 weeks ago
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,823Aug 20, 2025Updated 6 months ago
- 🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast…☆1,519Updated this week
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆3,012Jun 24, 2024Updated last year
- Quickly discover exposed hosts on the internet using multiple search engines.☆2,827Feb 25, 2026Updated last week
- Hidden parameters discovery suite☆2,028Sep 8, 2024Updated last year
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆2,156Updated this week
- Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more☆3,307Feb 16, 2026Updated 2 weeks ago
- pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching☆3,255Dec 1, 2025Updated 3 months ago
- The recursive internet scanner for hackers. 🧡☆9,468Updated this week
- The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information abo…☆1,704Jul 10, 2025Updated 7 months ago
- Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom …☆1,017Feb 24, 2026Updated last week
- Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration☆1,197Jan 9, 2026Updated last month
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,859Feb 28, 2026Updated last week
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application☆5,000Dec 21, 2024Updated last year
- A cheat sheet that contains advanced queries for SQL Injection of all types.☆3,154May 13, 2023Updated 2 years ago
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆8,497Nov 16, 2025Updated 3 months ago
- All In One Web Recon☆2,667Apr 30, 2025Updated 10 months ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,500Jan 8, 2026Updated last month
- Asset inventory of over 800 public bug bounty programs.☆1,520Feb 14, 2025Updated last year
- declutters url lists for crawling/pentesting☆1,531Feb 23, 2025Updated last year
- Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests w…☆631Feb 22, 2026Updated last week
- uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or direc…☆839Jun 20, 2022Updated 3 years ago
- 403/401 Bypass Methods + Bash Automation + Your Support ;)☆1,574Jun 6, 2022Updated 3 years ago
- ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting☆4,532Feb 15, 2026Updated 2 weeks ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.☆4,842Jan 1, 2025Updated last year
- Real-world infosec wordlists, updated regularly☆1,642Updated this week
- Automation for javascript recon in bug bounty.☆1,069Sep 9, 2023Updated 2 years ago
- A simple tool for bypassing file upload restrictions.☆893Jul 22, 2024Updated last year
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382May 19, 2023Updated 2 years ago
- LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping☆1,477Nov 26, 2024Updated last year
- A curated list of various bug bounty tools☆5,817Feb 9, 2026Updated 3 weeks ago
- One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️☆6,416Dec 20, 2025Updated 2 months ago