Alternatives and similar repositories for can-i-take-over-xyz

Users that are interested in can-i-take-over-xyz are comparing it to the libraries listed below

• streaak / keyhacks
  Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
  ☆5,950Updated last year
• tomnomnom / assetfinder
  Find domains and subdomains related to a given domain
  ☆3,466Updated last year
• tomnomnom / waybackurls
  Fetch all the URLs that the Wayback Machine knows about for a domain
  ☆4,233Updated last year
• lc / gau
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
  ☆4,709Updated 11 months ago
• GerbenJavado / LinkFinder
  A python script that finds endpoints in JavaScript files
  ☆4,197Updated last year
• s0md3v / Arjun
  HTTP parameter discovery suite.
  ☆5,968Updated 9 months ago
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,884Updated 3 years ago
• pry0cc / axiom
  The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…
  ☆4,311Updated last year
• tomnomnom / httprobe
  Take a list of domains and probe for working HTTP and HTTPS servers
  ☆3,071Updated last year
• arkadiyt / bounty-targets-data
  This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …
  ☆3,554Updated this week
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,322Updated 9 months ago
• Bo0oM / fuzz.txt
  Potentially dangerous files
  ☆3,247Updated 3 months ago
• EdOverflow / bugbounty-cheatsheet
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆6,314Updated 2 years ago
• nahamsec / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆2,002Updated 4 years ago
• devanshbatham / ParamSpider
  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
  ☆2,934Updated last year
• assetnote / kiterunner
  Contextual Content Discovery Tool
  ☆3,035Updated last year
• mandatoryprogrammer / xsshunter-express
  An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
  ☆2,152Updated last year
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,416Updated 3 months ago
• six2dez / OneListForAll
  Rockyou for web fuzzing
  ☆2,964Updated 3 months ago
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,873Updated 4 years ago
• techgaun / github-dorks
  Find leaked secrets via github search
  ☆3,089Updated 2 months ago
• hahwul / dalfox
  🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
  ☆4,725Updated this week
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,539Updated last month
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,454Updated 11 months ago
• tomnomnom / hacks
  A collection of hacks and one-off scripts
  ☆2,392Updated 8 months ago
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,966Updated 2 weeks ago
• bugcrowd / HUNT
  ☆2,300Updated 2 years ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆2,011Updated 2 years ago
• almandin / fuxploider
  File upload vulnerability scanner and exploitation tool.
  ☆3,281Updated 7 months ago
• gwen001 / pentest-tools
  A collection of custom security tools for quick needs.
  ☆3,268Updated 2 years ago