Alternatives and similar repositories for Lilly

Users that are interested in Lilly are comparing it to the libraries listed below

• Dheerajmadhukar / subzzZ

  View on GitHub
  SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.
  ☆38Mar 7, 2021Updated 4 years ago
• BonJarber / SecUtils

  View on GitHub
  Random utilities from my security projects that might be useful to others
  ☆183Jan 26, 2025Updated last year
• byt3hx / gup

  View on GitHub
  gup aka Get All Urls parameters to create wordlists for brute forcing parameters.
  ☆18Dec 4, 2021Updated 4 years ago
• kmskrishna / gdn

  View on GitHub
  A GO module to get domain name from SSL certificates when an IP address is provided.
  ☆34Apr 14, 2023Updated 2 years ago
• KathanP19 / Gxss

  View on GitHub
  A tool to check a bunch of URLs that contain reflecting params.
  ☆599Aug 4, 2024Updated last year
• bp0lr / dmut

  View on GitHub
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆155Nov 24, 2023Updated 2 years ago
• allyomalley / BurpParamFlagger

  View on GitHub
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Feb 19, 2021Updated 4 years ago
• honoki / bbrf-client

  View on GitHub
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆642Jul 7, 2025Updated 7 months ago
• Static-Flow / BurpRequestCleaner

  View on GitHub
  This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.
  ☆12Dec 29, 2020Updated 5 years ago
• pwnpanda / ParamCleaner

  View on GitHub
  Removes duplicate entries from a file, resulting in only unique parameter combinations. Useful for parsing waybackurls and making recon m…
  ☆11May 31, 2020Updated 5 years ago
• ghsec / ghsec-jaeles-signatures

  View on GitHub
  Signatures for jaeles scanner by @j3ssie
  ☆117Apr 20, 2024Updated last year
• profmoriarity / rexsser

  View on GitHub
  This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
  ☆74Nov 5, 2020Updated 5 years ago
• robre / scripthunter

  View on GitHub
  Tool to find JavaScript files on Websites
  ☆526Nov 2, 2023Updated 2 years ago
• Josue87 / gotator

  View on GitHub
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆503Jul 17, 2022Updated 3 years ago
• Sicks3c / Reconizer

  View on GitHub
  ☆38Nov 27, 2020Updated 5 years ago
• rotemreiss / uddup

  View on GitHub
  Urls de-duplication tool for better recon.
  ☆145May 29, 2025Updated 8 months ago
• KathanP19 / JSFScan.sh

  View on GitHub
  Automation for javascript recon in bug bounty.
  ☆1,067Sep 9, 2023Updated 2 years ago
• PatrikFehrenbach / amass-tools

  View on GitHub
  ☆105Oct 18, 2020Updated 5 years ago
• Impact-I / x8-Burp

  View on GitHub
  Hidden parameters discovery suite
  ☆225Nov 14, 2022Updated 3 years ago
• 0xRTH / IISRecon

  View on GitHub
  IIS shortname scanner + bruteforce
  ☆54Feb 18, 2024Updated last year
• dubey-amit / Web-Cheatsheet

  View on GitHub
  Vulnerability Cheatsheet
  ☆54Apr 22, 2022Updated 3 years ago
• YashGoti / gal

  View on GitHub
  Get all possible href | src | url from target url or domain
  ☆40Aug 5, 2020Updated 5 years ago
• harsh-bothra / Bheem

  View on GitHub
  ☆375Aug 20, 2021Updated 4 years ago
• eslam3kl / 3klCon

  View on GitHub
  Automation Recon tool which works with Large & Medium scopes. It performs a lot of tasks and gets back all the results in separated files…
  ☆684Jul 15, 2024Updated last year
• 0xDexter0us / Scavenger

  View on GitHub
  Burp extension to create target specific and tailored wordlist from burp history.
  ☆255Dec 8, 2021Updated 4 years ago
• KathanP19 / OpenBB-Scope

  View on GitHub
  OpenBugBounty - https://www.openbugbounty.org/ programs list
  ☆23Mar 15, 2021Updated 4 years ago
• Josue87 / resolveDomains

  View on GitHub
  Given a list of domains, you resolve them and get the IP addresses.
  ☆47Mar 2, 2022Updated 3 years ago
• Dheerajmadhukar / karma_v2

  View on GitHub
  ⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)
  ☆935May 21, 2025Updated 8 months ago
• ayoubfathi / leaky-paths

  View on GitHub
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆1,021Jun 24, 2024Updated last year
• Shivangx01b / CorsMe

  View on GitHub
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆173Nov 17, 2021Updated 4 years ago
• jayateertha043 / FireOver

  View on GitHub
  A FireBase DataBase TakeOver Tool along with POC Generator
  ☆35Sep 16, 2021Updated 4 years ago
• 0xsapra / fuzzparam

  View on GitHub
  ☆59Apr 8, 2021Updated 4 years ago
• NitinYadav00 / My-Nuclei-Templates

  View on GitHub
  Nuclei Templates - Here you will find the templates I use while hunting
  ☆120Sep 27, 2021Updated 4 years ago
• bp0lr / gauplus

  View on GitHub
  ☆299Jul 16, 2022Updated 3 years ago
• akhil-reni / ud-peep

  View on GitHub
  Search for secrets inside user data attached to EC2 instances on multiple AWS accounts
  ☆16Jun 19, 2024Updated last year
• TheCrysp / Gitty

  View on GitHub
  ☆13Feb 26, 2021Updated 4 years ago
• lc / subjs

  View on GitHub
  Fetches javascript file from a list of URLS or subdomains.
  ☆834Jul 22, 2025Updated 6 months ago
• filedescriptor / untrusted-types

  View on GitHub
  ☆695Jul 4, 2022Updated 3 years ago
• theinfosecguy / QuickXSS

  View on GitHub
  Automating XSS using Bash
  ☆361Jan 27, 2026Updated 2 weeks ago