thehlopster / hfuzzLinks
Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templates, web-scanners, seclist, bo0m, and more.
☆103Updated 4 months ago
Alternatives and similar repositories for hfuzz
Users that are interested in hfuzz are comparing it to the libraries listed below
Sorting:
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆140Updated 2 years ago
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆94Updated 11 months ago
- ☆134Updated 8 months ago
- Fetches JavaScript files quickly and comprehensively.☆126Updated 2 years ago
- CVE Collection of jQuery XSS Payloads☆71Updated 2 years ago
- 403-bypass tool to bypass 403 responses.☆119Updated 2 years ago
- BChecks collection for Burp Suite Professional☆100Updated last year
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆244Updated 4 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆77Updated last year
- Self-hosted passive subdomain continous monitoring tool.☆165Updated last year
- CVE Collection of jQuery UI XSS Payloads☆119Updated 2 years ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆136Updated 7 months ago
- Automatic Bug finder with buprsuite☆166Updated 2 years ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆98Updated 10 months ago
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆143Updated last year
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆73Updated 6 months ago
- A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etc☆103Updated 5 months ago
- ☆68Updated 2 years ago
- ☆119Updated last year
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆214Updated last year
- Private Nuclei Templates☆100Updated 5 months ago
- A path-normalization pentesting tool.☆128Updated last year
- ☆162Updated 2 years ago
- Bypass 403 pages☆117Updated last year
- A Lightning-Fast DNS Resolver written in Rust 🦀☆67Updated 8 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆37Updated last week
- Automated Subdomain Enumeration and Scanning Tool☆116Updated last year
- Make URL path combinations using a wordlist☆173Updated last year
- ☆167Updated 9 months ago
- A Burp Suite extension to extract datas from source code while browsing.☆158Updated last year