A vast collection of security tools for bug bounty, pentest and red teaming

#parameters

13 results
fuzzagotchi on offsec.tools
Featured
fuzzagotchi

A fuzzing tool written in Go. It helps your pentesting journey.

#directories   #endpoints   #fuzzing   #parameters  

qsinject on offsec.tools
qsinject

Allows you to quickly substitute query string values with regex matches, one-at-a-time.

#parameters   #payloads   #regexp   #utils  

gitscraper on offsec.tools
gitscraper

Scrapes public GitHub repositories for common naming conventions in variables, folders and files.

#directories   #endpoints   #files   #github   #parameters   #resources  

BlackWidow on offsec.tools
BlackWidow

Web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

#emails   #endpoints   #forms   #fuzzing   #osint   #owasp   #parameters   #phones   #subdomains  

See-SURF on offsec.tools
See-SURF

Detect Vulnerable SSRF parameters.

#dns   #http   #parameters   #scanner   #ssrf  

XSpear on offsec.tools
XSpear

Powerfull XSS Scanning and Parameter analysis tool&gem.

#exploits   #parameters   #scanner   #vulnerabilities   #xss  

param-miner on offsec.tools
param-miner

Identifies hidden, unlinked parameters, useful for finding web cache poisoning vulnerabilities.

#burpsuite   #parameters  

parameth on offsec.tools
parameth

Brute discover GET and POST parameters.

#parameters  

GAP on offsec.tools
GAP

A Burp Suite extension to find potential endpoints and parameters.

#burpsuite   #endpoints   #parameters  

Arjun on offsec.tools
Arjun

HTTP parameter discovery suite.

#endpoints   #fuzzing   #parameters  

ParamSpider on offsec.tools
ParamSpider

Mining parameters from dark corners of Web Archives.

#crawler   #parameters  

xnLinkFinder on offsec.tools
xnLinkFinder

A python tool used to discover endpoints and potential parameters for a given target.

#endpoints   #parameters  

X8 on offsec.tools
X8

Hidden parameters discovery suite.

#endpoints   #parameters