Alternatives and similar repositories for BountyIt

Users that are interested in BountyIt are comparing it to the libraries listed below

• R0X4R / ssrf-tool
  An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.
  ☆44Updated 4 years ago
• Josue87 / roboxtractor
  Extract endpoints marked as disallow in robots files to generate wordlists.
  ☆57Updated 3 years ago
• dwisiswant0 / wadl-dumper
  Dump all available paths and/or endpoints on WADL file.
  ☆93Updated 2 weeks ago
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆81Updated 3 years ago
• dumorewithcode / purl
  ☆39Updated 2 years ago
• hakluke / hakfindinternaldomains
  Feed it a list of subdomains, it will resolve them and tell you which ones are internal
  ☆92Updated 3 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆70Updated 4 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• dwisiswant0 / nuclei-templates-dir
  Nuclei Templates Directory
  ☆51Updated this week
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• eternyle / ShodanIsh
  Shodan Favicon Hash Generator By Aziz Hakim @eternyle
  ☆25Updated last year
• notnotnotveg / nuclei-custom-templates
  Additional nuclei templates
  ☆37Updated last year
• ethicalhackingplayground / linkJS
  ☆56Updated 4 years ago
• hahwul / gitls
  🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline
  ☆59Updated 6 months ago
• tehryanx / sprawl
  Expand urls into one url for each path depth
  ☆33Updated 4 years ago
• byt3hx / sonarbyte
  sonarbyte is a simple and fast subdomain scanner written in go to extract subdomain from Rapid7's DNS Database using omnisint's api.
  ☆27Updated 2 years ago
• nikhil1232 / Bucket-Flaws
  Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations
  ☆58Updated 4 years ago
• Sicks3c / Reconizer
  ☆38Updated 4 years ago
• pry0cc / subgen
  A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!
  ☆87Updated 5 years ago
• dwisiswant0 / bounty-targets-alert
  It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.
  ☆58Updated 3 years ago
• Sachin-v3rma / hactivity
  A Tool to find subdomains from hackerone reports.
  ☆17Updated 3 years ago
• Josue87 / resolveDomains
  Given a list of domains, you resolve them and get the IP addresses.
  ☆48Updated 3 years ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆47Updated last year
• panch0r3d / nuclei-templates
  ☆88Updated 3 years ago
• Healdb / Elevate
  Horizontal Domain Discovery
  ☆76Updated 2 years ago
• emadshanab / Scan-Apple-ASN-for-vulnerabilities-and-leave-no-port
  ☆44Updated 3 years ago
• thelikes / gwdomains
  sub domain wild card filtering tool
  ☆41Updated 5 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆59Updated 3 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 3 years ago