Unofficial documentation for the great tool Param Miner
☆183Aug 21, 2022Updated 3 years ago
Alternatives and similar repositories for param-miner-doc
Users that are interested in param-miner-doc are comparing it to the libraries listed below
Sorting:
- Burp extension to create target specific and tailored wordlist from burp history.☆256Dec 8, 2021Updated 4 years ago
- Extract JavaScript files from burp suite project with ease.☆98Feb 19, 2022Updated 4 years ago
- Custom scripts for the PIPER Burp extensions.☆97Sep 24, 2023Updated 2 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆33Nov 8, 2021Updated 4 years ago
- Obtain GraphQL API schema even if the introspection is disabled☆1,399Dec 5, 2025Updated 3 months ago
- Hidden parameters discovery suite☆2,028Sep 8, 2024Updated last year
- ☆380May 17, 2023Updated 2 years ago
- Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, Paramete…☆51Jun 14, 2020Updated 5 years ago
- ☆73Nov 22, 2021Updated 4 years ago
- ☆695Jul 4, 2022Updated 3 years ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"☆17Jun 2, 2025Updated 9 months ago
- Tool for catching and logging different types of requests.☆220Nov 20, 2020Updated 5 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆203Aug 5, 2024Updated last year
- Rust-based high performance domain permutation generator.☆299Dec 2, 2023Updated 2 years ago
- Unleash the power of cloud☆815Nov 19, 2024Updated last year
- Detects request smuggling via HTTP/2 downgrades.☆94Jul 30, 2022Updated 3 years ago
- ☆56Jan 16, 2025Updated last year
- Automated learning of regexes for DNS discovery☆390Feb 18, 2023Updated 3 years ago
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆1,294Aug 7, 2025Updated 6 months ago
- ☆95Sep 18, 2021Updated 4 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,500Jan 8, 2026Updated last month
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆953Dec 31, 2021Updated 4 years ago
- Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,272Feb 27, 2026Updated last week
- Tool for making it easy to collect dns results from the CLI☆40Aug 14, 2024Updated last year
- Identify virtual hosts by similarity comparison☆137Aug 12, 2024Updated last year
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆34Feb 12, 2022Updated 4 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆641Jul 7, 2025Updated 8 months ago
- Client Side Prototype Pollution Scanner☆522Sep 17, 2022Updated 3 years ago
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…☆529Apr 23, 2025Updated 10 months ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆215May 13, 2019Updated 6 years ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆559Mar 8, 2025Updated 11 months ago
- Content-Type Research☆656Jun 29, 2025Updated 8 months ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆156Nov 24, 2023Updated 2 years ago
- Stuff that doesn't deserves its own repository.☆357Aug 9, 2025Updated 6 months ago
- ☆562Mar 27, 2025Updated 11 months ago
- Prototype pollution scanner using headless chrome☆218Jul 27, 2022Updated 3 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆93Nov 21, 2021Updated 4 years ago
- Find endpoints on GitHub.☆214Mar 28, 2023Updated 2 years ago
- Find subdomains on GitLab.☆106Apr 28, 2024Updated last year