Alternatives and similar repositories for Subdomain-Takeover

Users that are interested in Subdomain-Takeover are comparing it to the libraries listed below

• QdghJ / burp_data_collector
  A Burp plugin that collects Burp request parameters, directories, paths and file names into the database for sorting
  ☆91Updated 4 years ago
• theLSA / burp-unauth-checker
  burpsuite extension for check unauthorized vulnerability
  ☆232Updated 4 years ago
• TheKingOfDuck / paramFuzzer
  一款高效的参数fuzz工具|A faster param fuzzing test tool
  ☆101Updated 4 years ago
• timwhitez / Frog-Auth
  🐸Unauthorized Detection Framework未授权访问检测框架
  ☆161Updated last year
• jweny / shiro-cve-2020-17523
  shiro-cve-2020-17523 漏洞的两种绕过姿势分析 以及配套的漏洞环境
  ☆117Updated 4 years ago
• DSO-Lab / defvul
  DSO-Lab 漏洞研究成果整理
  ☆82Updated 2 years ago
• pmiaowu / BurpReflectiveXssMiao
  一款基于burp的反射xss检测插件
  ☆156Updated 3 years ago
• p1g3 / Fastjson-Scanner
  a burp extension to find where use fastjson
  ☆165Updated 5 years ago
• timwhitez / Frog-Submon
  🐸Subdomain Monitor, 子域名监控
  ☆77Updated 4 years ago
• lalajun / RMIDeserialize
  RMI 反序列化环境 一步步
  ☆210Updated 4 years ago
• Artemis1029 / Java_xmlhack
  帮助java环境下任意文件下载情况自动化读取源码的小工具
  ☆166Updated 6 years ago
• Y4er / fastjson-bypass-autotype-1.2.68
  fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.
  ☆226Updated 2 years ago
• potats0 / javaSerializationTools
  ☆142Updated 4 years ago
• theLSA / burp-info-extractor
  burpsuite extension for extract information from data
  ☆86Updated last year
• Maskhe / vuls
  收集整理一些漏洞，利用方法，poc等等，方便快速查阅
  ☆59Updated 3 years ago
• gh0stkey / JSONandHTTPP
  Burp Suite Plugin: Convert the json text that returns the body into HTTP request parameters.
  ☆103Updated 3 years ago
• sp4rkw / Reaper
  一款用于src资产信息收集的工具
  ☆56Updated 4 years ago
• LFYSec / ActuatorExploit
  SpringBoot Actuator未授权自动化利用，支持信息泄漏/RCE
  ☆231Updated 4 years ago
• zongdeiqianxing / hscan
  集成crawlergo、xray、dirsearch、nmap等工具的src漏洞挖掘工具，使用docker封装运行；使用oneforall自动遍历子域名并扫描；
  ☆116Updated 4 years ago
• 7hang / POC-EXP
  Web端POC-EXP 整理
  ☆99Updated 4 years ago
• LS95 / gopher-redis-auth
  This tool generates gopher link for exploiting SSRF and gaining RCE in redis with password.用于生成附带密码认证的gopher内容，用于SSRF等利用。
  ☆115Updated 5 years ago
• black-mirror / Weblogic
  Weblogic CVE-2019-2725 CVE-2019-2729 Getshell 命令执行
  ☆69Updated 5 years ago
• uknowsec / BurpSuite-Extender-fastjson
  Reference：https://www.w2n1ck.com/article/44/
  ☆155Updated 5 years ago
• waderwu / attackRmi
  attackRmi
  ☆255Updated 4 years ago
• arno567 / ShiroScanF
  shiro反序列化批量ip快速检测脚本
  ☆78Updated 4 years ago
• SummerSec / BurpBountyProfiles
  BurpBounty插件的配置文件收集项目
  ☆142Updated 4 years ago
• 0x9f99 / Recon
  自动化护网/SRC致富脚本
  ☆82Updated 4 years ago
• GGyao / CVE-2020-14882_ALL
  CVE-2020-14882_ALL综合利用工具，支持命令回显检测、批量命令回显、外置xml无回显命令执行等功能。
  ☆144Updated 3 years ago
• admintony / shiro_rememberMe_Rce
  利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。
  ☆124Updated 4 years ago
• rufherg / WebLogic_Basic_Poc
  用于WebLogic poc及exp测试的基础脚本，后续将集成各版本poc库
  ☆93Updated 4 years ago