thehlopster / hfuzzLinks
Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templates, web-scanners, seclist, bo0m, and more.
☆101Updated 6 months ago
Alternatives and similar repositories for hfuzz
Users that are interested in hfuzz are comparing it to the libraries listed below
Sorting:
- BChecks collection for Burp Suite Professional☆101Updated last year
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆140Updated 2 years ago
- CVE Collection of jQuery XSS Payloads☆74Updated 2 years ago
- ☆135Updated 10 months ago
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆96Updated last year
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆245Updated 6 months ago
- 403-bypass tool to bypass 403 responses.☆119Updated 2 years ago
- CVE Collection of jQuery UI XSS Payloads☆118Updated 2 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆79Updated last year
- A path-normalization pentesting tool.☆132Updated last week
- Fetches JavaScript files quickly and comprehensively.☆125Updated 2 years ago
- Self-hosted passive subdomain continous monitoring tool.☆167Updated last year
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆144Updated last year
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆98Updated last year
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆76Updated 8 months ago
- ☆124Updated last month
- Describe how to use ffuf different options with examples☆89Updated 2 years ago
- Make URL path combinations using a wordlist☆173Updated 2 years ago
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆215Updated last year
- A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…☆161Updated last year
- All Type of Payloads☆136Updated last year
- ☆165Updated 2 years ago
- Private Nuclei Templates☆100Updated 7 months ago
- A Lightning-Fast DNS Resolver written in Rust 🦀☆68Updated 10 months ago
- Web API for nuclei and subfinder will help you automate your entire security testing workflow since you can host it anywhere and make it …☆60Updated 3 years ago
- Automatic Bug finder with buprsuite☆166Updated 2 years ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆138Updated 10 months ago
- A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etc☆103Updated 7 months ago
- The fastest way to setup XSSHunter. It has options for the official and Discord/Slack Forks☆44Updated last year
- ☆68Updated 2 years ago