611 Open source projects that are alternatives of or similar to request_smuggler

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Pentest: Subdomains enumeration tool for penetration testers.

An automated target reconnaissance pipeline.

Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting

🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang

The Swiss Army knife for automated Web Application Testing

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Web path scanner

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

Fast and customizable vulnerability scanner For JIRA written in Python

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻

CloudFlare Checker written in Go

a Go code to detect leaks in JS files via regex patterns

Cross Origin Resource Sharing MisConfiguration Scanner

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Powerfull XSS Scanning and Parameter analysis tool&gem

Nuubi Tools (Information-ghatering|Scanner|Recon.)

No description or website provided.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Automated NoSQL database enumeration and web application exploitation tool.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs

apkizer is a mass downloader for android applications for all available versions.

Send notifications on different channels such as Slack, Telegram, Discord etc.

WEB PENETRATION TESTING TOOL 💥

Tiny Sentry client with idiomatic wrapper for Angular

Remote control your police scanner

Automation Capable Multi Search 64 Bit Windows Memory Scanner

An Extended, Modulair, Host Discovery Framework

Turn your VPS into an attack box

I built some bash functions to help me while doing mundane and repetitive tasks using BBRF, Nuclei or other Bug bounty tool.

Peter's Parallel Network Scanner

Tool to bypass 40X response codes.

Find endpoints on GitHub.

Related subdomains finder

A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.

An example of how to correctly parse python-like indentation-scoped files using flex (and bison).

Bug's feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities...

Search a filesystem for indicators of compromise (IoC).

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

SSL Scanner written in Crystal

Extract endpoints marked as disallow in robots files to generate wordlists.

Toolset for detecting reflected xss in websites

sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.

A simple, smart and efficient document scanner for Android

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

Mass querying whois records

Boxer: A fast directory bruteforce tool written in Python with concurrency.

A small wrapper class providing an unified interface to search for various memory signatures

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

DNTScanner.Core is a .NET 4x and .NET Core 2x+ wrapper for the Windows Image Acquisition library.

Inventus is a spider designed to find subdomains of a specific domain by crawling it and any subdomains it discovers.

Gosint is a distributed asset information collection and vulnerability scanning platform

A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.

Fast and extensible network scanning library featuring multithreading, ping probing, and scan fetchers.

GradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.

Unofficial WhatCMS API package