A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etc
☆102Mar 5, 2025Updated last year
Alternatives and similar repositories for fuzzlists
Users that are interested in fuzzlists are comparing it to the libraries listed below
Sorting:
- A wordlist generator tool, that allows you to supply a set of words, giving you the possibility to craft multiple variations from the giv…☆116Sep 19, 2023Updated 2 years ago
- All-in Fuzzer. Burp suite extension for auto fuzzing params, headers, body☆36Dec 13, 2025Updated 3 months ago
- Template Nuclei SSTI☆34Nov 18, 2025Updated 4 months ago
- A python-based vulnerability scanner designed to identify open redirect flaws in website applications.☆24Updated this week
- SidePeek.js is a curated set of JavaScript payloads for browser-based recon. Run them in DevTools or as bookmarklets to uncover hidden AP…☆21May 13, 2025Updated 10 months ago
- Hand-made Improved Nuclei Templates!🪴☆13Jun 12, 2023Updated 2 years ago
- Writeup finder from medium or other☆22Sep 11, 2024Updated last year
- A command-line utility designed to recursively spider webpages for URLs. It works by actively traversing websites - following links embed…☆105Dec 8, 2025Updated 3 months ago
- Extracts URLs from OSINT Archives for Security Insights☆177Mar 14, 2026Updated last week
- WordPress version scanner written in Python.☆15Jun 18, 2024Updated last year
- quick and dirty proof-of-concept to hide shells in images☆52Jun 27, 2024Updated last year
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆44Feb 24, 2025Updated last year
- ☆20Apr 5, 2023Updated 2 years ago
- ☆29May 22, 2024Updated last year
- Attempt zone transfers on domains☆18Jul 12, 2021Updated 4 years ago
- Ollama AI Analyzer runs directly on your local computer, using Ollama's AI models to analyze your HTTP requests and responses. This means…☆32Mar 1, 2025Updated last year
- MacroExploit use in excel sheet☆20Jun 12, 2023Updated 2 years ago
- Python tool to generate crafted JWTs, exploiting the algorithm confusion vulnerability in JWT signature validation. Useful for security …☆25Mar 22, 2025Updated 11 months ago
- ☆14Nov 8, 2024Updated last year
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆311Mar 31, 2024Updated last year
- Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist☆418Aug 25, 2024Updated last year
- Nuclei Templates☆14Jan 13, 2023Updated 3 years ago
- It contain google dork to find the wsdl file.☆13May 27, 2020Updated 5 years ago
- Arescan is a powerful web directory discovery tool that helps you uncover hidden directories and links on any website. By performing a br…☆31Apr 5, 2023Updated 2 years ago
- This tool is intended for bounty hunters, the script installs and launches the best set of tools for expanding the attack surface, for W…☆12Apr 22, 2024Updated last year
- 1337 Wordlists for Bug Bounty Hunting☆933Updated this week
- Smart Setup Server For BugBounty☆26Aug 21, 2023Updated 2 years ago
- An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms.☆212Apr 21, 2025Updated 11 months ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆29Nov 22, 2024Updated last year
- uforall is a fast url crawler this tool crawl all URLs number of different sources, alienvault,WayBackMachine,urlscan,commoncrawl☆52Nov 3, 2025Updated 4 months ago
- Lightweight reflection scanner☆20Aug 31, 2025Updated 6 months ago
- An XSS exploitation command-line interface and payload generator.☆1,417Jan 19, 2025Updated last year
- OpenSSH Pre-Auth Double Free CVE-2023-25136 POC☆47Apr 21, 2023Updated 2 years ago
- Filter URLs that match your scope file for bugbounty.☆11May 23, 2023Updated 2 years ago
- Automated HTTP Request Repeating With Burp Suite☆39Apr 3, 2023Updated 2 years ago
- i will upload more templates here to share with the comunity.☆569Apr 17, 2024Updated last year
- ☆631Dec 19, 2025Updated 3 months ago
- 🕵️♂️🔍 A tool with several scanning techniques that extracts live IP addresses from a list of IP addresses or CIDR notations.☆54May 14, 2023Updated 2 years ago
- Chameleon Wordlists☆15Sep 13, 2022Updated 3 years ago