Alternatives and similar repositories for Astra

Users that are interested in Astra are comparing it to the libraries listed below

• subzero987 / S3-Recon

  View on GitHub
  S3 Recon tips and tricks collected from different resources,Sorry if i missed to mention all resources owners
  ☆27Nov 13, 2021Updated 4 years ago
• NitinYadav00 / My-Nuclei-Templates

  View on GitHub
  Nuclei Templates - Here you will find the templates I use while hunting
  ☆120Sep 27, 2021Updated 4 years ago
• Sachin-v3rma / hactivity

  View on GitHub
  A Tool to find subdomains from hackerone reports.
  ☆17Jun 23, 2021Updated 4 years ago
• NagliNagli / Shockwave-OSS

  View on GitHub
  ☆755Jun 26, 2024Updated last year
• daffainfo / Key-Checker

  View on GitHub
  Go scripts for checking API key / access token validity
  ☆221Aug 3, 2021Updated 4 years ago
• root-tanishq / userefuzz

  View on GitHub
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆382May 19, 2023Updated 2 years ago
• ferreiraklet / Airi

  View on GitHub
  Hidden input parameters finder
  ☆19Jul 10, 2023Updated 2 years ago
• 0xmoot / s3sec

  View on GitHub
  Check AWS S3 instances for read/write/delete access
  ☆121Feb 8, 2022Updated 4 years ago
• Dheerajmadhukar / karma_v1

  View on GitHub
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆59Sep 6, 2021Updated 4 years ago
• R0X4R / bhedak

  View on GitHub
  A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.
  ☆109Mar 1, 2022Updated 3 years ago
• theinfosecguy / QuickXSS

  View on GitHub
  Automating XSS using Bash
  ☆361Jan 27, 2026Updated 2 weeks ago
• raverrr / plution

  View on GitHub
  Prototype pollution scanner using headless chrome
  ☆218Jul 27, 2022Updated 3 years ago
• ksharinarayanan / SSRFire

  View on GitHub
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆971Dec 8, 2021Updated 4 years ago
• xxux11 / http-methods-discloser

  View on GitHub
  ☆44Apr 30, 2021Updated 4 years ago
• ferreiraklet / Jeeves

  View on GitHub
  Jeeves SQLI Finder
  ☆215May 13, 2022Updated 3 years ago
• eslam3kl / ShoLister

  View on GitHub
  ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …
  ☆60May 10, 2022Updated 3 years ago
• eslam3kl / 3klCon

  View on GitHub
  Automation Recon tool which works with Large & Medium scopes. It performs a lot of tasks and gets back all the results in separated files…
  ☆684Jul 15, 2024Updated last year
• bp0lr / myGF_patterns

  View on GitHub
  ☆21Dec 15, 2020Updated 5 years ago
• r0075h3ll / Oralyzer

  View on GitHub
  Open Redirection Analyzer
  ☆811Mar 5, 2023Updated 2 years ago
• ethicalhackingplayground / TProxer

  View on GitHub
  A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
  ☆185Nov 22, 2021Updated 4 years ago
• KathanP19 / gaussrf

  View on GitHub
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆173Nov 11, 2020Updated 5 years ago
• Impact-I / x8-Burp

  View on GitHub
  Hidden parameters discovery suite
  ☆225Nov 14, 2022Updated 3 years ago
• Sh1Yo / x8

  View on GitHub
  Hidden parameters discovery suite
  ☆2,015Sep 8, 2024Updated last year
• iamthefrogy / nerdbug

  View on GitHub
  Full Nuclei automation script with logic explanation.
  ☆246Mar 26, 2022Updated 3 years ago
• optiv / mobile-nuclei-templates

  View on GitHub
  ☆435Jun 1, 2021Updated 4 years ago
• volkandindar / agartha

  View on GitHub
  A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
  ☆394Feb 4, 2026Updated last week
• MindPatch / lorsrf

  View on GitHub
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆297Sep 22, 2024Updated last year
• ghsec / ghsec-jaeles-signatures

  View on GitHub
  Signatures for jaeles scanner by @j3ssie
  ☆117Apr 20, 2024Updated last year
• dwisiswant0 / ppfuzz

  View on GitHub
  A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
  ☆657Aug 28, 2025Updated 5 months ago
• Stonzyy / dumpxss

  View on GitHub
  Scanner Tool For XSS Vulnerability
  ☆83Apr 13, 2022Updated 3 years ago
• xm1k3 / cent

  View on GitHub
  Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…
  ☆1,038Aug 23, 2025Updated 5 months ago
• ethicalhackingplayground / Zin

  View on GitHub
  A Payload Injector for bugbounties written in go
  ☆70Jul 18, 2020Updated 5 years ago
• KathanP19 / protoscan

  View on GitHub
  Prototype Pollution Scanner
  ☆138Apr 11, 2021Updated 4 years ago
• trickest / mksub

  View on GitHub
  Generate tens of thousands of subdomain combinations in a matter of seconds
  ☆273Sep 25, 2023Updated 2 years ago
• hackerspider1 / Recon-bugbounty

  View on GitHub
  Simple recon using multiple tools!
  ☆165Jan 10, 2022Updated 4 years ago
• emadshanab / Burpsuite-Plugins-Extensions-Arsenal

  View on GitHub
  ☆42Jul 14, 2021Updated 4 years ago
• effortlessdevsec / ApkRecon

  View on GitHub
  Scanning APK file for URIs, endpoints & secrets.
  ☆43Apr 5, 2021Updated 4 years ago
• lutfumertceylan / top25-parameter

  View on GitHub
  For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
  ☆1,817Jun 9, 2024Updated last year
• rotemreiss / uddup

  View on GitHub
  Urls de-duplication tool for better recon.
  ☆145May 29, 2025Updated 8 months ago