Alternatives and similar repositories for nsec3map

Users that are interested in nsec3map are comparing it to the libraries listed below

• infosec-au / enumXFF
  Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions
  ☆221Updated 3 years ago
• intrigueio / intrigue-ident
  Application and Service Fingerprinting
  ☆133Updated 2 years ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆152Updated 2 years ago
• subfinder / goaltdns
  A permutation generation tool written in golang
  ☆210Updated 5 years ago
• Abss0x7tbh / bass
  Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers …
  ☆147Updated last year
• nashcontrol / bounty-monitor
  Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …
  ☆219Updated 2 years ago
• lanrat / certgraph
  An open source intelligence tool to crawl the graph of certificate Alternate Names
  ☆351Updated last year
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆134Updated last year
• maK- / scantastic-tool
  It's bloody scantastic
  ☆237Updated 2 years ago
• tomdev / teh_s3_bucketeers
  ☆275Updated 3 years ago
• PaulSec / crt.sh
  (Unofficial) Python API for https://crt.sh
  ☆144Updated 4 years ago
• hdm / inetdata
  Internet data acquisition
  ☆149Updated 4 years ago
• harleo / asnip
  ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
  ☆207Updated 3 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆149Updated 6 years ago
• ReconJSON / ReconJSON
  ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.
  ☆102Updated 6 years ago
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆346Updated 3 years ago
• brianwarehime / inSp3ctor
  AWS S3 Bucket/Object Finder
  ☆120Updated 3 years ago
• smiegles / mass3
  ☆125Updated 5 years ago
• mazen160 / server-status_PWN
  A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-s…
  ☆436Updated 3 years ago
• PortSwigger / distribute-damage
  Evenly distributes scanner load across targets
  ☆87Updated last month
• silentsignal / burp-piper
  Piper Burp Suite Extender plugin
  ☆122Updated last year
• The-Login / DNS-Reset-Checker
  Tools to assess the DNS security of web applications
  ☆128Updated 2 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆103Updated last year
• JGillam / burp-paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆157Updated 2 months ago
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆127Updated last year
• CaliDog / Axeman
  Axeman is a utility to retrieve certificates from Certificate Transparency Lists (CTLs)
  ☆221Updated last year
• clirimemini / Keye
  Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…
  ☆101Updated 5 years ago
• cheetz / sslScrape
  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
  ☆331Updated 4 years ago
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆259Updated 3 years ago
• samhaxr / TakeOver-v1
  Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…
  ☆101Updated 2 years ago