musana / CF-Hero
CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web applications
☆873Updated 3 months ago
Alternatives and similar repositories for CF-Hero:
Users that are interested in CF-Hero are comparing it to the libraries listed below
- jshunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying se…☆337Updated 3 months ago
- A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.☆588Updated last week
- Header Exploitation HTTP☆487Updated this week
- Burp Plugin to Bypass WAFs through the insertion of Junk Data☆1,075Updated 2 months ago
- Customizable Linux Persistence Tool for Security Research and Detection Engineering.☆593Updated last month
- Burp Suite extension that mutates ciphers to bypass TLS-fingerprint based bot detection☆312Updated 3 weeks ago
- Check subdomains for subdomain takeovers and other DNS tomfoolery☆326Updated this week
- reverse shell using curl☆454Updated 11 months ago
- Uncover the true IP address of websites safeguarded by Cloudflare & Others☆1,526Updated 2 months ago
- Dump cookies and credentials directly from Chrome/Edge process memory☆1,152Updated 4 months ago
- Automated web vulnerability scanning with LLM agents☆286Updated 3 weeks ago
- Go CLI and Library for quickly mapping organization network ranges using ASN information.☆837Updated this week
- Python tool designed to identify misconfigured DMARC and SPF settings in domains. It resolves DNS records, checks for DMARC policies, SPF…☆112Updated 3 months ago
- wappalyzer alternative based on wappalyzer browser extension☆125Updated last month
- Make BASH stealthy and hacker friendly with lots of bash functions☆247Updated last week
- Phishing with a fake reCAPTCHA☆515Updated 6 months ago
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆679Updated 5 months ago
- Tool to bypass 403/40X response codes.☆1,222Updated 3 months ago
- how to look for Leaked Credentials !☆904Updated 10 months ago
- Lightning-fast passive subdomain discovery tool for security professionals and bug bounty hunters.☆252Updated 3 weeks ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆222Updated last month
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆346Updated 4 months ago
- A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.☆332Updated last week
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆692Updated this week
- SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty☆551Updated last week
- ☆235Updated this week
- HTTP 403 bypass tool☆504Updated last year
- FBI Watchdog is an OSINT tool that monitors domain seizures and DNS record changes in real time, alerting users to law enforcement takedo…☆285Updated 3 weeks ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆616Updated 2 weeks ago
- smbclient-ng, a fast and user friendly way to interact with SMB shares.☆896Updated 2 weeks ago