JordyZomer / autoSubTakeoverView external linksLinks
A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking out if subdomain takeover is possible.
☆135Aug 14, 2023Updated 2 years ago
Alternatives and similar repositories for autoSubTakeover
Users that are interested in autoSubTakeover are comparing it to the libraries listed below
Sorting:
- ☆477Jan 29, 2021Updated 5 years ago
- A tool that can help detect and takeover subdomains with dead DNS records☆773Jan 3, 2021Updated 5 years ago
- SSLScrape | A scanning tool for scaping hostnames from SSL certificates.☆337Apr 29, 2021Updated 4 years ago
- This tool can be used to brute discover GET and POST parameters☆1,390Aug 24, 2019Updated 6 years ago
- Cloudflare DNS Enumeration Tool for Pentesters☆524Aug 6, 2022Updated 3 years ago
- Finds unknown classes of injection vulnerabilities☆708Apr 30, 2025Updated 9 months ago
- ☆834Nov 13, 2023Updated 2 years ago
- Evil snippets of Underhanded Red Team tactics☆11Jul 5, 2017Updated 8 years ago
- Windows Privesc Check☆20May 20, 2014Updated 11 years ago
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,143Jun 25, 2019Updated 6 years ago
- Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…☆123Apr 4, 2018Updated 7 years ago
- Multi Tool Subdomain Enumeration☆724Apr 11, 2021Updated 4 years ago
- Preventing malicious takeover of the retired slurp AWS tool☆41Aug 27, 2018Updated 7 years ago
- The XSS Hunter service - a portable version of XSSHunter.com☆1,540Dec 7, 2022Updated 3 years ago
- Enumerate subdomains through Virustotal☆32Nov 2, 2019Updated 6 years ago
- Vulnerability scanner based on vulners.com search API☆884Oct 1, 2025Updated 4 months ago
- ☆645Oct 1, 2024Updated last year
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆550Jun 12, 2017Updated 8 years ago
- Continuous monitoring for JavaScript files☆225Dec 29, 2019Updated 6 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆74Jan 4, 2021Updated 5 years ago
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,528Jul 21, 2025Updated 6 months ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,468Jan 9, 2025Updated last year
- Content discovery wordlists generated using BigQuery☆580Apr 26, 2020Updated 5 years ago
- A container repository for my public web hacks!☆2,017Oct 12, 2022Updated 3 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆631Feb 5, 2019Updated 7 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆367Jul 23, 2022Updated 3 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆305Oct 14, 2018Updated 7 years ago
- BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.☆162Apr 24, 2025Updated 9 months ago
- A script to extract domain names from Content Security Policy(CSP) headers☆113May 13, 2019Updated 6 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,117Apr 21, 2024Updated last year
- Sleepy Puppy XSS Payload Management Framework☆1,045Jul 24, 2018Updated 7 years ago
- psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…☆277Feb 12, 2021Updated 5 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,028Feb 5, 2021Updated 5 years ago
- A Powerful Subdomain Takeover Tool☆962Oct 17, 2023Updated 2 years ago
- Default plugins for Jaeles Scanner☆35Nov 5, 2020Updated 5 years ago
- Second-order subdomain takeover scanner☆406Aug 28, 2025Updated 5 months ago
- phpAudit is a simple shell script that scans PHP files for possible security risks.☆26Apr 7, 2013Updated 12 years ago
- Command line tool that enables automated penetration testing in the Microsoft stack using OWASP ZAP☆20Feb 22, 2015Updated 10 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆398Apr 17, 2020Updated 5 years ago