Alternatives and similar repositories for targets

Users that are interested in targets are comparing it to the libraries listed below

• obheda12 / MoneyScope

  View on GitHub
  A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities
  ☆106Feb 22, 2021Updated 4 years ago
• AdmiralGaust / bountyReconV2

  View on GitHub
  Framework to automate Bug Bounty Reconnaissance
  ☆43Jan 4, 2021Updated 5 years ago
• vavkamil / h1_2_nuclei

  View on GitHub
  Scan any HackerOne program with Nuclei
  ☆13Sep 21, 2021Updated 4 years ago
• elfarsaouiomar / monitor-new-subdomain

  View on GitHub
  Subdomain Monitor A production-ready subdomain monitoring system with both API and CLI interfaces.
  ☆74Jan 28, 2026Updated 2 weeks ago
• shelld3v / flydns

  View on GitHub
  Related subdomains finder
  ☆29May 18, 2022Updated 3 years ago
• KathanP19 / OpenBB-Scope

  View on GitHub
  OpenBugBounty - https://www.openbugbounty.org/ programs list
  ☆23Mar 15, 2021Updated 4 years ago
• Dheerajmadhukar / karma_v1

  View on GitHub
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆59Sep 6, 2021Updated 4 years ago
• emadshanab / DIR-WORDLISTS

  View on GitHub
  Some wordlists collected form github to all bug bounty hunters.
  ☆39Jul 30, 2021Updated 4 years ago
• 0cirius0 / Subdomains-Tracker

  View on GitHub
  A notification script to help with Recon Stuff
  ☆14Jun 8, 2021Updated 4 years ago
• Abdulrahman-Kamel / dpfilter

  View on GitHub
  BugBounty , sort and delete duplicates param value without missing original value
  ☆22Jul 31, 2021Updated 4 years ago
• war-and-code / akamai-arl-hack

  View on GitHub
  Script to test open Akamai ARL vulnerability.
  ☆70Aug 11, 2021Updated 4 years ago
• 0xsapra / fuzzparam

  View on GitHub
  ☆59Apr 8, 2021Updated 4 years ago
• themarkib / google-acquisitions

  View on GitHub
  Most of the Google Acquisitions for Bug Bounty Hunter.
  ☆65Sep 3, 2022Updated 3 years ago
• melbadry9 / SSLEnum

  View on GitHub
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆42Nov 10, 2025Updated 3 months ago
• Fawadkhanfk / Hunting-Tips

  View on GitHub
  Tips For Bug Bounty Hunters
  ☆86Jul 16, 2022Updated 3 years ago
• honoki / bbrf-burp-plugin

  View on GitHub
  A BurpSuite plugin for BBRF
  ☆25Nov 17, 2024Updated last year
• MustafaSky / Guide-to-SSRF

  View on GitHub
  Guide to SSRF
  ☆74Oct 10, 2023Updated 2 years ago
• thomashartm / burp-aem-scanner

  View on GitHub
  Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common m…
  ☆75Mar 22, 2024Updated last year
• daxAKAhackerman / XSS-Catcher

  View on GitHub
  A blind XSS detection and XSS data capture framework
  ☆175Dec 6, 2025Updated 2 months ago
• th3hack3rwiz / Wordlist-Weaver

  View on GitHub
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆67May 28, 2022Updated 3 years ago
• adrianlarion / pegaxss

  View on GitHub
  Magic Header Blind Xss tool (deliver blind xss payloads in request headers).
  ☆26May 30, 2021Updated 4 years ago
• root4loot / rescope

  View on GitHub
  Bugbounty scope tool
  ☆332Mar 5, 2025Updated 11 months ago
• Josue87 / wp_hunter

  View on GitHub
  Static analysis of wordpress plugins
  ☆60Dec 16, 2020Updated 5 years ago
• xm1k3 / cent

  View on GitHub
  Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…
  ☆1,038Aug 23, 2025Updated 5 months ago
• Healdb / Elevate

  View on GitHub
  Horizontal Domain Discovery
  ☆77May 22, 2023Updated 2 years ago
• KathanP19 / gaussrf

  View on GitHub
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆173Nov 11, 2020Updated 5 years ago
• xnl-h4ck3r / urless

  View on GitHub
  De-clutter a list of URLs
  ☆384Feb 3, 2026Updated last week
• ghsec / ghsec-jaeles-signatures

  View on GitHub
  Signatures for jaeles scanner by @j3ssie
  ☆117Apr 20, 2024Updated last year
• bp0lr / gauplus

  View on GitHub
  ☆299Jul 16, 2022Updated 3 years ago
• ghostlulzhacks / waybackSqliScanner

  View on GitHub
  ☆199Jun 6, 2019Updated 6 years ago
• Josue87 / AnalyticsRelationships

  View on GitHub
  Get related domains / subdomains by looking at Google Analytics IDs
  ☆251Jun 3, 2022Updated 3 years ago
• HACKE-RC / webdork

  View on GitHub
  A Python tool to automate some dorking stuff to find information disclosures.
  ☆156Jul 3, 2024Updated last year
• bp0lr / dnsfaster

  View on GitHub
  Test the speed and reliability of a list of DNS servers
  ☆22Dec 9, 2020Updated 5 years ago
• ZephrFish / Wordlists

  View on GitHub
  Various Payload wordlists
  ☆239Apr 26, 2025Updated 9 months ago
• iamthefrogy / nerdbug

  View on GitHub
  Full Nuclei automation script with logic explanation.
  ☆246Mar 26, 2022Updated 3 years ago
• th3hack3rwiz / Fu-JS

  View on GitHub
  This tool aims at accumulating javascript files from a given set of subdomains to discover hidden endpoints. It swims through JS files to…
  ☆49Dec 28, 2022Updated 3 years ago
• anshumanpattnaik / http-request-smuggling

  View on GitHub
  HTTP Request Smuggling Detection Tool
  ☆535Dec 21, 2023Updated 2 years ago
• byt3hx / Bug-Bounty-Tips

  View on GitHub
  I will share my bug bounty tips here
  ☆32Mar 6, 2023Updated 2 years ago
• fransr / bountyplz

  View on GitHub
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆459May 10, 2019Updated 6 years ago