m3n0sd0n4ld / GooFuzzView external linksLinks
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
☆1,552Dec 21, 2025Updated last month
Alternatives and similar repositories for GooFuzz
Users that are interested in GooFuzz are comparing it to the libraries listed below
Sorting:
- An XSS exploitation command-line interface and payload generator.☆1,415Jan 19, 2025Updated last year
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,515Jan 15, 2026Updated 3 weeks ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,527Feb 3, 2026Updated last week
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆7,192Updated this week
- Rockyou for web fuzzing☆3,014Aug 28, 2025Updated 5 months ago
- bypass-url-parser☆1,111Feb 7, 2026Updated last week
- OSINT tools and more but without API key☆1,468Jun 29, 2025Updated 7 months ago
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,816Aug 20, 2025Updated 5 months ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆2,998Jun 24, 2024Updated last year
- 🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast…☆1,490Feb 5, 2026Updated last week
- Quickly discover exposed hosts on the internet using multiple search engines.☆2,824Jan 7, 2026Updated last month
- Hidden parameters discovery suite☆2,017Sep 8, 2024Updated last year
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆2,149Updated this week
- Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more☆3,282Jan 20, 2026Updated 3 weeks ago
- pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching☆3,250Dec 1, 2025Updated 2 months ago
- The recursive internet scanner for hackers. 🧡☆9,415Updated this week
- Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom …☆1,008Updated this week
- The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information abo…☆1,700Jul 10, 2025Updated 7 months ago
- Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration☆1,194Jan 9, 2026Updated last month
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,835Updated this week
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application☆4,991Dec 21, 2024Updated last year
- A cheat sheet that contains advanced queries for SQL Injection of all types.☆3,144May 13, 2023Updated 2 years ago
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆8,464Nov 16, 2025Updated 2 months ago
- All In One Web Recon☆2,653Apr 30, 2025Updated 9 months ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,496Jan 8, 2026Updated last month
- Asset inventory of over 800 public bug bounty programs.☆1,517Feb 14, 2025Updated 11 months ago
- declutters url lists for crawling/pentesting☆1,522Feb 23, 2025Updated 11 months ago
- Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests w…☆631Jan 4, 2026Updated last month
- uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or direc…☆840Jun 20, 2022Updated 3 years ago
- 403/401 Bypass Methods + Bash Automation + Your Support ;)☆1,567Jun 6, 2022Updated 3 years ago
- ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting☆4,512Updated this week
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.☆4,821Jan 1, 2025Updated last year
- Real-world infosec wordlists, updated regularly☆1,632Updated this week
- Automation for javascript recon in bug bounty.☆1,067Sep 9, 2023Updated 2 years ago
- A simple tool for bypassing file upload restrictions.☆892Jul 22, 2024Updated last year
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382May 19, 2023Updated 2 years ago
- LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping☆1,468Nov 26, 2024Updated last year
- A curated list of various bug bounty tools☆5,774Updated this week
- One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️☆6,403Dec 20, 2025Updated last month