Alternatives and similar repositories for Subdomain-Takeover

Users that are interested in Subdomain-Takeover are comparing it to the libraries listed below

• QdghJ / burp_data_collector
  A Burp plugin that collects Burp request parameters, directories, paths and file names into the database for sorting
  ☆91Updated 4 years ago
• theLSA / burp-unauth-checker
  burpsuite extension for check unauthorized vulnerability
  ☆234Updated 4 years ago
• timwhitez / Frog-Submon
  🐸Subdomain Monitor, 子域名监控
  ☆77Updated 4 years ago
• timwhitez / Frog-Auth
  🐸Unauthorized Detection Framework未授权访问检测框架
  ☆161Updated last year
• Maskhe / vuls
  收集整理一些漏洞，利用方法，poc等等，方便快速查阅
  ☆59Updated 4 years ago
• DSO-Lab / defvul
  DSO-Lab 漏洞研究成果整理
  ☆83Updated 3 years ago
• gh0stkey / JSONandHTTPP
  Burp Suite Plugin: Convert the json text that returns the body into HTTP request parameters.
  ☆104Updated 4 years ago
• TheKingOfDuck / paramFuzzer
  一款高效的参数fuzz工具|A faster param fuzzing test tool
  ☆102Updated 4 years ago
• pmiaowu / BurpReflectiveXssMiao
  一款基于burp的反射xss检测插件
  ☆155Updated 3 years ago
• test502git / log4j-fuzz-head-poc
  批量检测log4j漏洞，主要还是批量fuzzz 头
  ☆33Updated 3 years ago
• Bywalks / OnTimeHacker
  爬取各大SRC当日公告 | 通过微信通知的小工具 | 赏金工具
  ☆101Updated 3 years ago
• p1g3 / Fastjson-Scanner
  a burp extension to find where use fastjson
  ☆165Updated 5 years ago
• theLSA / burp-info-extractor
  burpsuite extension for extract information from data
  ☆86Updated last year
• timwhitez / Frog-Fp
  🐸fingerprint detect framework 批量深度指纹识别框架
  ☆120Updated 2 years ago
• sp4rkw / Reaper
  一款用于src资产信息收集的工具
  ☆57Updated 4 years ago
• potats0 / javaSerializationTools
  ☆142Updated 4 years ago
• PortSwigger / authz
  ☆107Updated 8 years ago
• uknowsec / BurpSuite-Extender-fastjson
  Reference：https://www.w2n1ck.com/article/44/
  ☆155Updated 5 years ago
• jweny / shiro-cve-2020-17523
  shiro-cve-2020-17523 漏洞的两种绕过姿势分析 以及配套的漏洞环境
  ☆118Updated 4 years ago
• Conanjun / passive-scan-client-and-sendto
  burp被动扫描自动转发和手动重发插件
  ☆51Updated 5 years ago
• Artemis1029 / Java_xmlhack
  帮助java环境下任意文件下载情况自动化读取源码的小工具
  ☆167Updated 6 years ago
• 0x9f99 / Recon
  自动化护网/SRC致富脚本
  ☆82Updated 4 years ago
• Y4er / fastjson-bypass-autotype-1.2.68
  fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.
  ☆227Updated 2 years ago
• zongdeiqianxing / hscan
  集成crawlergo、xray、dirsearch、nmap等工具的src漏洞挖掘工具，使用docker封装运行；使用oneforall自动遍历子域名并扫描；
  ☆115Updated 4 years ago
• pmiaowu / BurpHttpForwardRequests
  burp-http请求转发至其他模块的插件
  ☆76Updated 5 years ago
• 1c3z / fileleak
  又一款敏感文件泄漏检测工具
  ☆105Updated 5 years ago
• lakemoon602 / snail2.0
  批量检测敏感信息泄露
  ☆60Updated 5 years ago
• 0xa-saline / goby_api
  goby对应的api
  ☆33Updated 5 years ago
• cyal1 / host_scan
  这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go
  ☆114Updated 3 years ago
• waderwu / attackRmi
  attackRmi
  ☆258Updated 4 years ago