Fadavvi / Sub-DrillView external linksLinks
A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
☆116Dec 21, 2025Updated last month
Alternatives and similar repositories for Sub-Drill
Users that are interested in Sub-Drill are comparing it to the libraries listed below
Sorting:
- A collection of famous recon public scripts, but in bash <3☆29Mar 2, 2021Updated 4 years ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆27Jul 22, 2021Updated 4 years ago
- Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLs…☆12May 28, 2023Updated 2 years ago
- Tool to fuzz for interesting vhost.☆23Jan 8, 2025Updated last year
- Looks for parameters in urls☆34Oct 14, 2024Updated last year
- Automating XSS using Bash☆361Jan 27, 2026Updated 2 weeks ago
- Signatures for jaeles scanner by @j3ssie☆117Apr 20, 2024Updated last year
- [CVE-2024-4956] Nexus Repository Manager 3 Unauthenticated Path Traversal Bulk Scanner☆17Sep 26, 2024Updated last year
- Endpoint monitor tool☆21Sep 16, 2020Updated 5 years ago
- ☆21Dec 15, 2020Updated 5 years ago
- Tips For Bug Bounty Hunters☆86Jul 16, 2022Updated 3 years ago
- Secret and/or credential patterns used for gf.☆243Feb 10, 2023Updated 3 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆52Jul 14, 2021Updated 4 years ago
- ☆13Oct 24, 2024Updated last year
- CloudFlare Checker written in Go☆237May 12, 2024Updated last year
- Bash script to extract data from the Waybackmachine☆11Mar 15, 2021Updated 4 years ago
- AWS S3 open bucket poc automated script.☆57Aug 23, 2021Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Feb 19, 2021Updated 4 years ago
- ☆59Apr 8, 2021Updated 4 years ago
- ☆14Feb 7, 2024Updated 2 years ago
- S3 bucket finder from html,js and bucket misconfiguration testing tool☆34Feb 10, 2020Updated 6 years ago
- Find related domains of a given domain.☆103Aug 5, 2023Updated 2 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆394Feb 4, 2026Updated last week
- ☆299Jul 16, 2022Updated 3 years ago
- JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various e…☆47Apr 29, 2024Updated last year
- Hidden parameters discovery suite☆225Nov 14, 2022Updated 3 years ago
- XSS Finder Via SSTI☆56Sep 14, 2023Updated 2 years ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆280Feb 11, 2021Updated 5 years ago
- 🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).☆297Oct 5, 2024Updated last year
- A burp-suite plugin that extract all parameter names from in-scope requests☆29Nov 9, 2021Updated 4 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Mar 7, 2021Updated 4 years ago
- Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common m…☆75Mar 22, 2024Updated last year
- Python library and CLI for the Bug Bounty Recon API☆230Jun 5, 2021Updated 4 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆453Jan 9, 2024Updated 2 years ago
- 0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover☆57Dec 15, 2020Updated 5 years ago
- ☆45Jun 5, 2021Updated 4 years ago
- all manner of wordlists☆24Jan 19, 2022Updated 4 years ago
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆800Jul 4, 2023Updated 2 years ago
- ☆38Nov 27, 2020Updated 5 years ago