Alternatives and similar repositories for spfmap:

Users that are interested in spfmap are comparing it to the libraries listed below

• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 7 years ago
• ameenmaali / qsinject
  qsinject (Query String Inject) is a tool that allows you to quickly substitute query string values with regex matches, one-at-a-time.
  ☆30Updated 5 years ago
• CompassSecurity / burp-copy-request-response
  Burp extension for quickly copying request/response data.
  ☆29Updated 2 weeks ago
• N0MoreSecr3ts / wraith-signatures
  Signatures for wraith used to detect secrets across various sources
  ☆15Updated 2 years ago
• jakewarren / tldomains
  Tiny library to parse the subdomain, domain, and tld extension from a host string
  ☆23Updated 3 years ago
• cybercdh / vpaths
  Take a list of URIs and print all the of the paths
  ☆10Updated 4 years ago
• cosmoscrew / gomassdns
  A better dns bruteforcer written in golang
  ☆13Updated 6 years ago
• cqsd / daily-commonspeak2
  commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …
  ☆41Updated 3 years ago
• Leoid / Burp2Slack
  Push notifications to Slack channel or to custom server based on BurpSuite response conditions.
  ☆17Updated 4 years ago
• rverton / gxss
  Blind XSS service alerting over slack or email
  ☆32Updated 5 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 7 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆40Updated 3 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated 2 years ago
• silentsignal / burp-uuid
  UUID issues for Burp Suite
  ☆51Updated 2 years ago
• spaceraccoon / serverless-recon-example
  Example of a serverless web reconaissance workflow's AWS architecture.
  ☆11Updated 2 years ago
• ameenmaali / whoareyou
  whoareyou is a tool to find the underlying technology/software used in a list of websites passed through stdin (using Wappalyzer dataset)
  ☆32Updated 4 years ago
• rojan-rijal / LeakFinder
  https://sites.google.com/securifyinc.com/secblogs/finding-leaked-sensitive-data
  ☆17Updated 6 years ago
• BishopFox / gowitness
  🔍 gowitness - a golang, web screenshot utility using Chrome Headless
  ☆12Updated 5 years ago
• spenkk / rapiddns-extractor
  Extract subdomains from rapiddns.io
  ☆23Updated 2 years ago
• Static-Flow / BurpSuiteTeamServer
  This is the Go Server that relays all HTTP requests and responses between clients.
  ☆27Updated last year
• gwen001 / myrecon.py
  My recon script
  ☆50Updated 5 years ago
• nccgroup / clickjacking-poc
  Clickjacking PoC Generator
  ☆35Updated 4 years ago
• toufik-airane / leakin
  Secrets detection based on regular expressions.
  ☆22Updated 3 weeks ago
• Static-Flow / goRecorder
  During pentesting I often miss screenshots of events for reports due to the quick pace of testing and a lack of foreknowledge about what …
  ☆26Updated 5 years ago
• MrTaherAmine / pentest-management
  Simple webinterface combining different recon tools.
  ☆12Updated 7 years ago
• vp777 / metahttp
  A bash script that automates the scanning of a target network for HTTP resources through XXE
  ☆38Updated 4 years ago
• tomnomnom / burl
  A Broken-URL Checker
  ☆79Updated 7 years ago
• Static-Flow / vhostChecker
  VHostChecker takes a csv list of targets in the form of domain,ip,port and runs 4 seperate connection checks to get a quick sense of how …
  ☆33Updated last year
• timkoopmans / eipfish
  Go fish for AWS EIPs
  ☆46Updated 4 years ago
• rverton / redAsset
  Enumerate subdomains by parsing Rapid7 FDNS dumps and CA transparency logs
  ☆27Updated 6 years ago