The recursive internet scanner for hackers. π§‘
β9,513Mar 17, 2026Updated this week
Alternatives and similar repositories for bbot
Users that are interested in bbot are comparing it to the libraries listed below
Sorting:
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,352Updated this week
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Eβ¦β8,510Nov 16, 2025Updated 4 months ago
- A next-generation crawling and spidering framework.β15,911Mar 10, 2026Updated last week
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enablβ¦β27,492Updated this week
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!β2,562Mar 8, 2026Updated last week
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,873Updated this week
- Find, verify, and analyze leaked credentialsβ25,025Updated this week
- The Network Execution Toolβ5,339Updated this week
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secretsβ1,532Mar 8, 2026Updated last week
- Community curated list of templates for the nuclei engine to find security vulnerabilities.β12,058Updated this week
- Rockyou for web fuzzingβ3,087Mar 11, 2026Updated last week
- SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.β16,930Dec 15, 2024Updated last year
- Quickly discover exposed hosts on the internet using multiple search engines.β2,836Feb 25, 2026Updated 3 weeks ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScriptβ1,782May 22, 2024Updated last year
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,853Jan 1, 2025Updated last year
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flawsβ3,948Oct 4, 2025Updated 5 months ago
- In-depth attack surface mapping and asset discoveryβ14,256Updated this week
- Fast passive subdomain enumeration tool.β13,240Mar 11, 2026Updated last week
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β5,806Mar 9, 2026Updated last week
- HTTP parameter discovery suite.β6,142Feb 20, 2025Updated last year
- Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rulesβ¦β5,963Jul 12, 2024Updated last year
- The Havoc Frameworkβ8,245Dec 18, 2025Updated 3 months ago
- httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.β9,695Updated this week
- A list of useful payloads and bypass for Web Application Security and Pentest/CTFβ76,106Updated this week
- A fast, simple, recursive content discovery tool written in Rust.β7,587Feb 8, 2026Updated last month
- A Modern Orchestration Engine for Securityβ6,145Updated this week
- Adversary Emulation Frameworkβ10,838Updated this week
- declutters url lists for crawling/pentestingβ1,538Feb 23, 2025Updated last year
- One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password π‘οΈβ6,433Updated this week
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,356Sep 30, 2024Updated last year
- Fast web fuzzer written in Goβ15,750Apr 24, 2025Updated 10 months ago
- Tools and Techniques for Red Team / Penetration Testingβ8,568Mar 18, 2025Updated last year
- Real-world infosec wordlists, updated regularlyβ1,721Updated this week
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ5,006Dec 21, 2024Updated last year
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlistβ1,503Jan 8, 2026Updated 2 months ago
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,135Feb 23, 2026Updated 3 weeks ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ3,021Mar 7, 2026Updated last week
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,101Aug 14, 2024Updated last year
- Hidden parameters discovery suiteβ2,031Sep 8, 2024Updated last year