This tool aims at accumulating javascript files from a given set of subdomains to discover hidden endpoints. It swims through JS files to find more JS files. It also creates a target-specific wordlist from the JS-files for further content discovery and dumps all the discovered JS files neatly in a folder for static analysis.
☆49Dec 28, 2022Updated 3 years ago
Alternatives and similar repositories for Fu-JS
Users that are interested in Fu-JS are comparing it to the libraries listed below
Sorting:
- #JavascriptRecon #bugbounty☆21Aug 18, 2021Updated 4 years ago
- IIS shortname scanner + bruteforce☆55Feb 18, 2024Updated 2 years ago
- I will share my bug bounty tips here☆32Mar 6, 2023Updated 2 years ago
- Hidden input parameters finder☆19Jul 10, 2023Updated 2 years ago
- BugBounty , sort and delete duplicates param value without missing original value☆22Jul 31, 2021Updated 4 years ago
- Script for monitoring changes in javascript files on WebApps for offensive reconnaissance.☆28Aug 4, 2021Updated 4 years ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.☆27Jun 18, 2025Updated 8 months ago
- ☆32Dec 30, 2022Updated 3 years ago
- ☆57Sep 2, 2020Updated 5 years ago
- List of custom Nuclei templates☆16Nov 4, 2023Updated 2 years ago
- ☆14Feb 7, 2024Updated 2 years ago
- This repository contains links to all the 100 days tweets that I posted during the #100DaysOfHacking challenge.☆17Apr 11, 2022Updated 3 years ago
- This extension provides a central location for viewing all GraphQL requests/responses within a Burp project. It provides a clean UI that …☆15Feb 24, 2022Updated 4 years ago
- You can find hardcoded Api-Key,Secret,Token Etc..☆77Sep 3, 2022Updated 3 years ago
- A tool for testing subdomain takeover possibilities at a mass scale.☆50May 23, 2021Updated 4 years ago
- Framework to automate Bug Bounty Reconnaissance☆43Jan 4, 2021Updated 5 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆120Sep 27, 2021Updated 4 years ago
- ☆27Mar 18, 2020Updated 5 years ago
- ☆96Oct 1, 2021Updated 4 years ago
- Techniques / Tips and tricks for finding sensitive data exposures in Github for Penetration Testers / Bug Bounty Hunters☆17Aug 1, 2020Updated 5 years ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆66May 28, 2022Updated 3 years ago
- Subdomain takeover scanner using Python asyncio☆18Oct 24, 2022Updated 3 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆297Sep 22, 2024Updated last year
- QUESTER is a Web Pentesting & Bug Bounty Recon tool which queries URLs / Subdomains from the given list of URLs or subdomains.☆15Aug 2, 2021Updated 4 years ago
- TProx is a fast reverse proxy path traversal detector and directory bruteforcer.☆30Sep 16, 2021Updated 4 years ago
- WaybackURLS + OtxURLS + CommonCrawl = The Best Results☆22Dec 7, 2019Updated 6 years ago
- ☆436Jun 1, 2021Updated 4 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆215May 13, 2019Updated 6 years ago
- A tools for JavaScript Recon☆24Jul 25, 2020Updated 5 years ago
- Automated Subdomain Enumeration and Scanning Tool☆116Oct 5, 2023Updated 2 years ago
- Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common m…☆75Mar 22, 2024Updated last year
- ☆59Apr 8, 2021Updated 4 years ago
- Bug Bounty & Other Stuff☆58Dec 16, 2021Updated 4 years ago
- Most of the Google Acquisitions for Bug Bounty Hunter.☆64Sep 3, 2022Updated 3 years ago
- The Ultimate Recon Framework☆11Mar 29, 2024Updated last year
- ☆45Jun 5, 2021Updated 4 years ago
- ☆13Feb 26, 2021Updated 5 years ago
- Send notifications on different channels such as Slack, Telegram, Discord etc.☆39Jan 12, 2026Updated last month
- This tool allows you to find ssti vulnerability with ease!☆21Sep 3, 2022Updated 3 years ago