mmarting / unwaf
Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unwaf will check SPF records.
☆90Updated 8 months ago
Alternatives and similar repositories for unwaf:
Users that are interested in unwaf are comparing it to the libraries listed below
- A passive way to find backups/ sensitive information.☆77Updated last week
- A Powerful Recon Engine☆63Updated 5 months ago
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆98Updated 3 weeks ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆78Updated 3 months ago
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆39Updated 6 months ago
- ☆87Updated last month
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆41Updated 6 months ago
- Automated Subdomain Enumeration and Scanning Tool☆113Updated last year
- ☆119Updated last year
- Grep subdomains from web pages.☆42Updated 2 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆112Updated 6 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆113Updated 4 months ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆60Updated 5 months ago
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆57Updated 2 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆71Updated 3 months ago
- Gather results of dorks across a number of search engines☆118Updated last week
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆54Updated 3 months ago
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆55Updated 3 months ago
- Private Nuclei Templates☆99Updated 2 months ago
- ☆46Updated last month
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆96Updated 7 months ago
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆64Updated 11 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆91Updated last month
- This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer whil…☆49Updated last week
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆59Updated 6 months ago
- Passive Web Vulnerability Detection Tool☆31Updated this week
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆92Updated 8 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆128Updated 4 months ago
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆138Updated last year
- 🪄 XSSDynaGen is a tool designed to analyze URLs with parameters, identify the characters allowed by the server, and generate advanced XS…☆51Updated 4 months ago