cyberstars
cyberstars / target / web

Tools for web apps

HTTP/S applications and APIs.

74 tools indexed

Subfinder

Passive subdomain discovery.

ReconWeb appsNetworks
GoMIT

Tsunami

Google's network vulnerability scanner.

ScanNetworksWeb apps
JavaApache-2.0

Turbo Intruder

High-volume Burp HTTP fuzzer.

FuzzExploitWeb apps
JavaApache-2.0

WPScan

WordPress vulnerability scanner.

ScanWeb apps
RubyCustom

Web Check

All-in-one OSINT for any website.

ReconAnalyzeWeb apps
TypeScriptMIT

WhatWeb

Next-generation web tech fingerprinter.

ReconScanWeb apps
RubyGPL-2.0

XSStrike

Advanced XSS detection suite.

ScanFuzzWeb apps
PythonMIT

Yakit

Cyber-security all-in-one platform.

InterceptScanWeb appsNetworks
TypeScriptAGPL-3.0

dnstwist

Detect typosquats and phishing domains.

ScanReconWeb apps
PythonApache-2.0

feroxbuster

Fast recursive content discovery in Rust.

FuzzReconWeb apps
RustMIT

ffuf

Fast web fuzzer written in Go.

FuzzScanWeb apps
GoMIT

garak

LLM vulnerability scanner.

ScanFuzzWeb appsSource code
PythonApache-2.0

github-dorks

Find leaked secrets via GitHub search.

ReconSource codeWeb apps
PythonMIT

httpx

Fast HTTP toolkit.

ReconScanWeb apps
GoMIT

jwt_tool

Test and exploit JWT vulnerabilities.

ExploitAnalyzeWeb apps
PythonCC-BY-SA-3.0

mitmproxy

Interactive HTTPS proxy.

InterceptAnalyzeWeb appsNetworks
PythonMIT

promptfoo

Red-team prompts, agents and RAGs.

ScanFuzzWeb appsSource code
TypeScriptMIT

reGeorg

SOCKS proxy through a web shell.

InterceptExploitWeb appsNetworks
PythonMIT

sn0int

Semi-automatic OSINT framework.

ReconAutomateWeb appsNetworks
RustGPL-3.0

sqlmap

Automatic SQL injection and database takeover.

ExploitScanWeb apps
PythonGPL-2.0

testssl.sh

Test TLS/SSL on any port.

ScanAnalyzeWeb appsNetworks
ShellGPL-2.0

theHarvester

E-mail and subdomain harvester.

ReconWeb appsNetworks
PythonGPL-2.0

w3af

Web application attack and audit framework.

ScanExploitWeb apps
PythonGPL-2.0

wafw00f

WAF fingerprinting.

ReconScanWeb apps
PythonBSD-3-Clause