th3hack3rwiz / Fu-JS
This tool aims at accumulating javascript files from a given set of subdomains to discover hidden endpoints. It swims through JS files to find more JS files. It also creates a target-specific wordlist from the JS-files for further content discovery and dumps all the discovered JS files neatly in a folder for static analysis.
☆47Updated 2 years ago
Alternatives and similar repositories for Fu-JS
Users that are interested in Fu-JS are comparing it to the libraries listed below
Sorting:
- S3 Recon tips and tricks collected from different resources,Sorry if i missed to mention all resources owners☆27Updated 3 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- Basic Bash Script to scrape all subdomains from crtsh in a single run☆19Updated 2 years ago
- Some wordlists collected form github to all bug bounty hunters.☆30Updated 3 years ago
- It grep subdomains, email/username, build custom wordlist etc from gau results☆48Updated 2 years ago
- Cool HackerOne Reports☆21Updated 2 years ago
- IIS shortname scanner + bruteforce☆52Updated last year
- ☆21Updated 2 years ago
- Stuff for bug bounty☆28Updated 2 years ago
- Alternative to XSS Hunter for blind XSS.☆51Updated 2 years ago
- Automated blind-xss search for Burp Suite☆23Updated 3 years ago
- ☆95Updated 3 years ago
- ☆32Updated 2 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆35Updated 4 years ago
- ☆28Updated last year
- Turns a list of URLs into hostnames.☆15Updated 2 years ago
- ☆12Updated 2 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- ☆34Updated 4 years ago
- Authorization-Nuclei-Templates☆39Updated 8 months ago
- BurpSiute - BurpBounty Profiles☆19Updated 2 years ago
- ☆78Updated 2 years ago
- Small script to check a list of domains against open redirect vulnerability☆27Updated 3 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- Some of the gf patterns which i use☆43Updated 3 years ago
- nuclei-bb-templates☆49Updated 2 years ago
- ☆33Updated 2 years ago
- 3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company☆48Updated 2 years ago
- Oneliners curated from my experience and from the internet☆22Updated 4 years ago