Tool for testing reflections in the HTTP responses
☆60Jun 10, 2023Updated 2 years ago
Alternatives and similar repositories for queryxss
Users that are interested in queryxss are comparing it to the libraries listed below
Sorting:
- Collection of scripts that I use while bug hunting☆48Jun 10, 2023Updated 2 years ago
- AWS Trail Recon is an idea that came up during gohacking's offensive AWS security training. The idea is to use cloudtrail:lookupevents to…☆15May 14, 2024Updated last year
- Xssor.go is a xss reflections checker for urls☆71Mar 22, 2023Updated 2 years ago
- ☆10Jan 25, 2023Updated 3 years ago
- My own Custom nuclei templates☆26Dec 8, 2021Updated 4 years ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆75Jan 24, 2025Updated last year
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆374Jul 25, 2023Updated 2 years ago
- Web cache poisoning vulnerability scanner.☆73May 5, 2022Updated 3 years ago
- ☆25Jun 15, 2025Updated 8 months ago
- Recon-Ninja☆86Mar 24, 2024Updated last year
- CLI tool that extracts a regex pattern from a list of urls ( Rust )☆61Sep 14, 2022Updated 3 years ago
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆280Jan 12, 2026Updated last month
- Archived Please go to https://github.com/adamjsturge/xsshunter-go☆31Mar 7, 2024Updated last year
- i will upload more templates here to share with the comunity.☆567Apr 17, 2024Updated last year
- Repo for hosting rayder workflows☆63Aug 31, 2023Updated 2 years ago
- Stay on the beat with SubHound - receive notifications for new subdomains on Telegram and Discord! 🐶🎵☆17Jun 4, 2023Updated 2 years ago
- Public repo of Nuclei scanner templates.☆21May 22, 2023Updated 2 years ago
- XSS Finder Via SSTI☆56Sep 14, 2023Updated 2 years ago
- is a tool to automate and organize reconnaissance operations.☆24Sep 6, 2023Updated 2 years ago
- About Recon Tools,Methodology and writeups☆18Dec 16, 2023Updated 2 years ago
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆219Jul 14, 2024Updated last year
- jsleak is a tool to find secret , paths or links in the source code during the recon.☆576Sep 25, 2025Updated 5 months ago
- Backend for Nuclear Pond☆21Dec 7, 2023Updated 2 years ago
- A tool to extract all the urls and paths found in the content of a page (js sources included)☆22Aug 8, 2025Updated 6 months ago
- Fuzz every path with goky☆15Jan 4, 2024Updated 2 years ago
- Never forget where you inject.☆297Aug 15, 2025Updated 6 months ago
- My Priv8 Nuclei Templates☆338May 12, 2024Updated last year
- Gather results of dorks across a number of search engines☆200Jan 22, 2026Updated last month
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆245Oct 20, 2023Updated 2 years ago
- ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …☆60May 10, 2022Updated 3 years ago
- ☆116Nov 23, 2022Updated 3 years ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382May 19, 2023Updated 2 years ago
- Continuous Reconnaissance and Vulnerability Scanning for Bug Bounties☆18Jun 6, 2024Updated last year
- Smart context-based SSRF vulnerability scanner.☆360May 5, 2022Updated 3 years ago
- De-clutter a list of URLs☆386Feb 3, 2026Updated 3 weeks ago
- Filter URLs to save your time.☆60Jul 29, 2022Updated 3 years ago
- ☆38Nov 27, 2020Updated 5 years ago
- Find CVEs that don't have a Detectify modules.☆22Mar 28, 2023Updated 2 years ago
- Simple bash Oneliners to make life easier☆63Oct 16, 2020Updated 5 years ago