projectmonke/shortnameguesser

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/projectmonke/shortnameguesser)

projectmonke / shortnameguesser

A tool to guess the rest of the shortnames provided by vulnerable IIS instances.

☆41

Alternatives and similar repositories for shortnameguesser

Users that are interested in shortnameguesser are comparing it to the libraries listed below

Sorting:

markuta / go-security-txt
View on GitHub
A proof of concept program that pulls and parses security.txt files at mass.
☆29May 31, 2023Updated 2 years ago
NDevTK / postLogger
View on GitHub
Extension to log postMessage()
☆15Feb 17, 2026Updated 2 weeks ago
nikitastupin / orgs-data
View on GitHub
Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
☆85Feb 21, 2026Updated 2 weeks ago
NImaism / takeit
View on GitHub
Takeit is an advanced tool for detecting subdomain takeovers.
☆20Aug 25, 2024Updated last year
xnl-h4ck3r / XnlReveal
View on GitHub
A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…
☆434Oct 16, 2025Updated 4 months ago
SecGus / anewer
View on GitHub
A modified version of TomNomNom's anew, allowing for multiple files to be defined as parameters.
☆13Jun 17, 2023Updated 2 years ago
brevityinmotion / goodfaith
View on GitHub
Stay within program scope
☆37Aug 17, 2022Updated 3 years ago
xnl-h4ck3r / getSubsidiaries
View on GitHub
Get list of subsidiaries for a selected company
☆31Dec 21, 2024Updated last year
g0ldencybersec / sus_params
View on GitHub
☆212Jul 11, 2024Updated last year
xnl-h4ck3r / xnldorker
View on GitHub
Gather results of dorks across a number of search engines
☆200Jan 22, 2026Updated last month
0xdead4f / jswatch
View on GitHub
Javascript file change monitoring
☆17Nov 11, 2025Updated 3 months ago
AlfredBerg / dnsline
View on GitHub
Tool for making it easy to collect dns results from the CLI
☆40Aug 14, 2024Updated last year
Escape-Technologies / graphql-wordlist
View on GitHub
The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
☆456Oct 3, 2023Updated 2 years ago
AethliosIK / reset-tolkien
View on GitHub
Unsecure time-based secret exploitation and Sandwich attack implementation Resources
☆149Dec 9, 2024Updated last year
bitquark / shortscan
View on GitHub
An IIS short filename enumeration tool
☆1,126Nov 25, 2024Updated last year
kosmosec / proto-find
View on GitHub
Let's check if your target is vulnerable for client side prototype pollution.
☆65Jan 9, 2024Updated 2 years ago
gwen001 / graphql-introspection-analyzer
View on GitHub
Graphql introspection query analyzer.
☆18Mar 28, 2023Updated 2 years ago
bebiksior / CaidoReflector
View on GitHub
Automatically look for paramater reflections in the HTTP response
☆17Apr 30, 2025Updated 10 months ago
y0k4i-1337 / clairvoyancex
View on GitHub
Obtain GraphQL API schema despite disabled introspection!
☆69May 27, 2021Updated 4 years ago
hakluke / hakstore
View on GitHub
☆30Jul 14, 2023Updated 2 years ago
orwagodfather / NPM-RCE
View on GitHub
the POC of package.json RCE
☆26Jun 24, 2025Updated 8 months ago
pry0cc / nmap-to-ports
View on GitHub
Pipe nmap verbose output to a usable format for httpx or host:port notation.
☆16Jul 7, 2022Updated 3 years ago
caido-community / burp2caido
View on GitHub
A tool to migrate Burpsuite HTTP history to Caido
☆35Apr 25, 2025Updated 10 months ago
resyncgg / ripgen
View on GitHub
Rust-based high performance domain permutation generator.
☆299Dec 2, 2023Updated 2 years ago
0xRTH / IISRecon
View on GitHub
IIS shortname scanner + bruteforce
☆55Feb 18, 2024Updated 2 years ago
midoxnet / mapperplus
View on GitHub
MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
☆286Oct 5, 2024Updated last year
putsi / privatecollaborator
View on GitHub
A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
☆209Jun 25, 2024Updated last year
dsecuredcom / ffufPostprocessing
View on GitHub
Golang tool which helps dropping the irrelevant entries from your ffuf result file.
☆143Sep 16, 2024Updated last year
nikitastupin / clairvoyance
View on GitHub
Obtain GraphQL API schema even if the introspection is disabled
☆1,399Dec 5, 2025Updated 3 months ago
mexploit30 / java2s3
View on GitHub
☆24Jan 15, 2024Updated 2 years ago
KathanP19 / waybackfetch
View on GitHub
Tool for fetching all the available waybackmachine snapshot urls
☆24Oct 8, 2024Updated last year
umutcamliyurt / JSRecon
View on GitHub
A powerful tool designed for identifying hidden endpoints and sensitive information within JavaScript files on a website.
☆30Oct 19, 2023Updated 2 years ago
nullenc0de / paramhunter
View on GitHub
Looks for parameters in urls
☆34Oct 14, 2024Updated last year
kmskrishna / gdn
View on GitHub
A GO module to get domain name from SSL certificates when an IP address is provided.
☆33Apr 14, 2023Updated 2 years ago
kevin-mizu / domloggerpp
View on GitHub
A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
☆773Dec 9, 2025Updated 2 months ago
hakluke / hakcertstream
View on GitHub
Basic implementation of certstream to print new subdomains and domains
☆36Jul 6, 2021Updated 4 years ago
forcesunseen / graphquail
View on GitHub
Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
☆203Aug 5, 2024Updated last year
w9w / JSA
View on GitHub
Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.
☆559Mar 8, 2025Updated 11 months ago
Sybil-Scan / TLDbrute
View on GitHub
A simple utility to generate domain names with all possible TLDs
☆23Feb 3, 2023Updated 3 years ago