Alternatives and similar repositories for assets-from-spf

Users that are interested in assets-from-spf are comparing it to the libraries listed below

• 0xbharath / domains-from-csp
  A script to extract domain names from Content Security Policy(CSP) headers
  ☆112Updated 6 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆91Updated 5 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆61Updated 3 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆65Updated 4 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆109Updated 3 years ago
• JesseClarkND / abnormalizer
  unicode abnormalizer to takes a unicode string and abnormalizes it by character replacment
  ☆27Updated 5 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆83Updated 3 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆103Updated 4 years ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆57Updated 5 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆41Updated 4 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆109Updated 9 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆87Updated 4 years ago
• crawl3r / PortswiggerXSS
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆72Updated 4 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• Healdb / Elevate
  Horizontal Domain Discovery
  ☆76Updated 2 years ago
• lc / jenkinz
  Retrieve the complete build history for every job ever created and executed on a given Jenkins instance.
  ☆67Updated 3 months ago
• ameenmaali / endpointdiff
  Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.
  ☆41Updated 5 years ago
• ZephrFish / BurpFeed
  Hacked together script for feeding urls into Burp's Sitemap
  ☆93Updated 3 months ago
• kapytein / jsonp
  jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
  ☆153Updated 4 years ago
• sorokinpf / ApiWordlistGenerator
  Generate wordlists for fuzzing API method names
  ☆54Updated 4 years ago
• Rhynorater / reports
  ☆60Updated last year
• Sambal0x / Recon-tools
  Some of my bug bounty tools
  ☆51Updated 5 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆101Updated 9 months ago
• Damian89 / simple-oob-scanner
  Simple tool to test for SSRF/OOB HTTP Read within the Path of a request
  ☆30Updated 6 years ago
• Cgboal / exclude-cdn
  Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin
  ☆45Updated 2 years ago
• guilhermesilvame / security
  Collection of scripts to test your website against vulnerabilities.
  ☆18Updated last year
• vavkamil / XSSwagger
  A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks
  ☆60Updated 5 years ago
• Shashank-In / TravisLeaks
  A tool to find sensitive keys and passwords in Travis logs
  ☆143Updated 4 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆86Updated 4 years ago
• In3tinct / Taken
  Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.
  ☆92Updated 3 weeks ago