thehlopster / hfuzz
Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templates, web-scanners, seclist, bo0m, and more.
☆100Updated last month
Alternatives and similar repositories for hfuzz:
Users that are interested in hfuzz are comparing it to the libraries listed below
- CVE Collection of jQuery UI XSS Payloads☆120Updated 2 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆75Updated last year
- ☆131Updated 5 months ago
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆139Updated last year
- A path-normalization pentesting tool.☆126Updated last year
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆91Updated 8 months ago
- ☆119Updated last year
- Private Nuclei Templates☆98Updated 2 months ago
- BChecks collection for Burp Suite Professional☆97Updated 10 months ago
- ☆68Updated 2 years ago
- Custom scan profiles for use with Burp Suite Pro☆141Updated last year
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆114Updated 4 months ago
- ☆158Updated last year
- ☆240Updated 3 years ago
- ☆161Updated 6 months ago
- A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…☆161Updated last year
- Self-hosted passive subdomain continous monitoring tool.☆161Updated last year
- Make URL path combinations using a wordlist☆174Updated last year
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆241Updated last month
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆36Updated 9 months ago
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆261Updated 3 weeks ago
- Gather results of dorks across a number of search engines☆112Updated this week
- CVE Collection of jQuery XSS Payloads☆71Updated 2 years ago
- unleashed ffuf☆111Updated 9 months ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆96Updated 7 months ago
- A standalone Blind XSS Script.☆47Updated 2 years ago
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆139Updated last year
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆71Updated 3 months ago
- ☆58Updated 4 months ago
- 403-bypass tool to bypass 403 responses.☆119Updated 2 years ago