m3n0sd0n4ld / GooFuzz
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
β1,413Updated 10 months ago
Alternatives and similar repositories for GooFuzz:
Users that are interested in GooFuzz are comparing it to the libraries listed below
- An XSS exploitation command-line interface and payload generator.β1,315Updated last month
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. π‘οΈβοΈπ§β1,740Updated 9 months ago
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Reβ¦β1,464Updated last month
- MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilitieβ¦β926Updated 7 months ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X!β1,933Updated last week
- A simple script just made for self use for bypassing 403β1,829Updated 9 months ago
- Rockyou for web fuzzingβ2,728Updated 2 weeks ago
- The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information aboβ¦β1,506Updated 8 months ago
- Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom β¦β922Updated last week
- Generates millions of keyword-based password mutations in seconds.β1,269Updated 7 months ago
- Real-world infosec wordlists, updated regularlyβ1,460Updated this week
- Quickly discover exposed hosts on the internet using multiple search engines.β2,535Updated last month
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug huβ¦β2,103Updated 8 months ago
- Useful Google Dorks for WebSecurity and Bug Bountyβ1,067Updated 11 months ago
- AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.β979Updated 7 months ago
- Tool to bypass 403/40X response codes.β1,198Updated 2 months ago
- Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and moreβ1,632Updated this week
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript filesβ2,111Updated 9 months ago
- π Track down GitHub users.β890Updated last month
- bypass-url-parserβ1,058Updated this week
- Dangerously fast DNS/network/port scannerβ897Updated 2 years ago
- The fastest dork scanner written in Go.β1,177Updated last year
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ2,649Updated 8 months ago
- 403/401 Bypass Methods + Bash Automation + Your Support ;)β1,414Updated 2 years ago
- Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search β¦β527Updated last year
- A fast tool to scan CRLF vulnerability written in Goβ1,399Updated last week
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,003Updated this week
- Information Gathering tool - DNS / Subdomains / Ports / Directories enumerationβ995Updated 3 weeks ago
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomainβ¦β844Updated last year
- β611Updated 7 months ago