Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found
☆341Nov 6, 2023Updated 2 years ago
Alternatives and similar repositories for dora
Users that are interested in dora are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Automated Web Recon Shell Scripts☆53Dec 6, 2021Updated 4 years ago
- Jeeves SQLI Finder☆216May 13, 2022Updated 3 years ago
- List of fresh DNS resolvers updated daily☆107Feb 9, 2023Updated 3 years ago
- Running nuclei Continuously☆57Nov 11, 2022Updated 3 years ago
- Useful "Match and Replace" burpsuite rules☆365Sep 26, 2023Updated 2 years ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆426Feb 20, 2026Updated last month
- Python based Discord bot Which allows you to run tools like nmap and amass from discord☆27Oct 23, 2022Updated 3 years ago
- Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)☆42Nov 10, 2025Updated 4 months ago
- ☆59Apr 8, 2021Updated 4 years ago
- ⚡Chrome extension allows you to create lists of Google and Github dork to open multiple tabs with one click, import "scope/out of scope" …☆137Dec 1, 2023Updated 2 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆398Mar 6, 2026Updated 2 weeks ago
- ☆383May 17, 2023Updated 2 years ago
- List of Hourly Updated Fresh DNS resolvers☆110Updated this week
- Hidden parameters discovery suite☆224Nov 14, 2022Updated 3 years ago
- mx-takeover focuses DNS MX records and detects misconfigured MX records.☆357Jul 17, 2023Updated 2 years ago
- Filter and enrich a list of subdomains by level☆210Sep 25, 2023Updated 2 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆508Jul 17, 2022Updated 3 years ago
- Some simple scripts that I use during bug bounty hunting in Android Apps☆28Jan 30, 2025Updated last year
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,039Aug 23, 2025Updated 7 months ago
- ☆38Nov 27, 2020Updated 5 years ago
- You can find hardcoded Api-Key,Secret,Token Etc..☆77Sep 3, 2022Updated 3 years ago
- The second version of SQL Hunter. SQLi Hunter is a URL (Blind) SQL injection checker for multiple pages.☆93Mar 4, 2023Updated 3 years ago
- Hidden parameters discovery suite☆2,033Sep 8, 2024Updated last year
- A command-line utility designed to discover URLs for a given domain in a simple, efficient way. It works by gathering information from a …☆696Feb 23, 2026Updated last month
- A fast DOM based XSS vulnerability scanner with simplicity.☆857Sep 30, 2022Updated 3 years ago
- DNS resolution tracing tool☆35Jun 29, 2021Updated 4 years ago
- Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.☆185Dec 29, 2023Updated 2 years ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆289Sep 26, 2023Updated 2 years ago
- Most of the Google Acquisitions for Bug Bounty Hunter.☆64Sep 3, 2022Updated 3 years ago
- Little Bug Bounty & Hacking Tools⚔️☆372Mar 16, 2026Updated last week
- 3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company☆47Sep 19, 2022Updated 3 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆120Sep 27, 2021Updated 4 years ago
- Asset inventory of over 800 public bug bounty programs.☆1,526Feb 14, 2025Updated last year
- JF⚡can - Super fast port scanning & service discovery using Masscan and Nmap. Scan large networks with Masscan and use Nmap's scripting a…☆668Feb 19, 2026Updated last month
- De-clutter a list of URLs☆385Mar 8, 2026Updated 2 weeks ago
- A simple tool that helps to find assets/domains based on the Google Analytics ID.☆179Jan 12, 2026Updated 2 months ago
- Discover hidden debugging parameters and uncover web application secrets☆246Feb 4, 2026Updated last month
- XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.☆318Jun 1, 2022Updated 3 years ago
- Get related domains / subdomains by looking at Google Analytics IDs☆251Jun 3, 2022Updated 3 years ago