Alternatives and similar repositories for subbrute:

Users that are interested in subbrute are comparing it to the libraries listed below

• guelfoweb / knock
  Knock Subdomain Scan
  ☆3,940Updated 3 months ago
• blechschmidt / massdns
  A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
  ☆3,256Updated last month
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,163Updated 3 months ago
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,714Updated 2 years ago
• darkoperator / dnsrecon
  DNS Enumeration Script
  ☆2,712Updated last week
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,379Updated last month
• aboul3la / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆10,127Updated 6 months ago
• epinna / weevely3
  Weaponized web shell
  ☆3,251Updated 4 months ago
• xmendez / wfuzz
  Web application fuzzer
  ☆6,059Updated 6 months ago
• commixproject / commix
  Automated All-in-One OS Command Injection Exploitation Tool.
  ☆4,732Updated this week
• urbanadventurer / WhatWeb
  Next generation web scanner
  ☆5,729Updated 7 months ago
• michenriksen / gitrob
  Reconnaissance tool for GitHub organizations
  ☆5,989Updated 2 years ago
• codingo / NoSQLMap
  Automated NoSQL database enumeration and web application exploitation tool.
  ☆3,008Updated 6 months ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,868Updated 10 months ago
• SpiderLabs / Responder
  Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…
  ☆4,600Updated 4 years ago
• danielmiessler / RobotsDisallowed
  A curated list of the most common and most interesting robots.txt disallowed directories.
  ☆1,443Updated 2 years ago
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,517Updated last month
• GerbenJavado / LinkFinder
  A python script that finds endpoints in JavaScript files
  ☆3,826Updated 10 months ago
• lanjelot / patator
  Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
  ☆3,645Updated this week
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,742Updated 3 years ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,030Updated 2 weeks ago
• fuzzdb-project / fuzzdb
  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
  ☆8,394Updated last year
• elceef / dnstwist
  Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
  ☆5,031Updated 3 weeks ago
• projectdiscovery / subfinder
  Fast passive subdomain enumeration tool.
  ☆11,158Updated this week
• maurosoria / dirsearch
  Web path scanner
  ☆12,558Updated this week
• ffuf / ffuf
  Fast web fuzzer written in Go
  ☆13,446Updated 7 months ago
• s0md3v / Arjun
  HTTP parameter discovery suite.
  ☆5,439Updated 2 months ago
• mschwager / fierce
  A DNS reconnaissance tool for locating non-contiguous IP space.
  ☆1,650Updated 5 months ago
• evilsocket / xray
  XRay is a tool for recon, mapping and OSINT gathering from public networks.
  ☆2,231Updated 7 months ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,940Updated last year