the-xentropy / samlists
Free, libre, effective, and data-driven wordlists for all!
☆597Updated 3 years ago
Alternatives and similar repositories for samlists:
Users that are interested in samlists are comparing it to the libraries listed below
- Accept URLs on stdin, replace all query string values with a user-supplied value☆801Updated 2 years ago
- An IIS short filename enumeration tool☆894Updated 4 months ago
- A fuzzer for detecting open redirect vulnerabilities☆736Updated 8 months ago
- oneliner commands for bug bounties☆439Updated 2 years ago
- Small tool to Grab subdomains using Shodan api.☆426Updated 5 months ago
- A tool to check a bunch of URLs that contain reflecting params.☆565Updated 7 months ago
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆983Updated last year
- This a adaption of tomnomnom's kxss tool with a different output format☆454Updated last year
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆963Updated 2 months ago
- Golang client for querying SecurityTrails API data☆545Updated last year
- declutters url lists for crawling/pentesting☆1,321Updated last month
- ☆428Updated 2 months ago
- Fetches javascript file from a list of URLS or subdomains.☆759Updated last year
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆966Updated 9 months ago
- The Fairly Fast Fetcher. Requests a bunch of URLs provided on stdin fairly quickly.☆399Updated 11 months ago
- Automation for javascript recon in bug bounty.☆969Updated last year
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,293Updated last week
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆496Updated 3 weeks ago
- Open Redirection Analyzer☆768Updated 2 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆466Updated 2 years ago
- A fast and minimal JS endpoint extractor☆344Updated 4 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆623Updated 4 months ago
- Go client to communicate with Chaos DB API.☆694Updated this week
- A wordlist framework to fullfill your kinks with your wordlists. For security researchers, bug bounty and hackers.☆1,171Updated 11 months ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,326Updated 3 weeks ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆629Updated last year
- Heuristic Vulnerable Parameter Scanner☆584Updated last year
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆954Updated 2 months ago
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆243Updated 7 months ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,273Updated 6 months ago