Alternatives and similar repositories for whonow

Users that are interested in whonow are comparing it to the libraries listed below

• brannondorsey / dns-rebind-toolkit
  A front-end JavaScript toolkit for creating DNS rebinding attacks.
  ☆502Updated 3 years ago
• PortSwigger / hackability
  Probe a rendering engine for vulnerabilities and other features
  ☆366Updated 3 years ago
• FSecureLABS / dref
  DNS Rebinding Exploitation Framework
  ☆489Updated 4 years ago
• appsecco / bugcrowd-levelup-subdomain-enumeration
  This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
  ☆634Updated 6 years ago
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆396Updated 5 years ago
• PortSwigger / collaborator-everywhere
  A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by caus…
  ☆434Updated 3 months ago
• mandatoryprogrammer / cloudflare_enum
  Cloudflare DNS Enumeration Tool for Pentesters
  ☆522Updated 2 years ago
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆553Updated 2 years ago
• TypeError / domained
  Multi Tool Subdomain Enumeration
  ☆725Updated 4 years ago
• cheetz / sslScrape
  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
  ☆333Updated 4 years ago
• davidpepper / fierce-domain-scanner
  Fierce.pl Domain Scanner
  ☆300Updated 5 years ago
• jcesarstef / dotdotslash
  Search for Directory Traversal Vulnerabilities
  ☆446Updated last year
• ropnop / serverless_toolkit
  A collection of useful Serverless functions I use when pentesting
  ☆387Updated 2 years ago
• evilpacket / DVCS-Pillage
  Pillage web accessible GIT, HG and BZR repositories
  ☆319Updated 8 years ago
• dustyfresh / PHP-vulnerability-audit-cheatsheet
  This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…
  ☆355Updated 4 months ago
• AonCyberLabs / PadBuster
  Automated script for performing Padding Oracle attacks
  ☆783Updated last year
• mandatoryprogrammer / JudasDNS
  Nameserver DNS poisoning attacks made easy
  ☆523Updated 8 years ago
• RhinoSecurityLabs / SleuthQL
  Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.
  ☆469Updated 5 years ago
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆563Updated 2 years ago
• franccesco / getaltname
  Extract subdomains from SSL certificates in HTTPS sites.
  ☆385Updated 4 months ago
• dxa4481 / cssInjection
  Stealing CSRF tokens with CSS injection (without iFrames)
  ☆322Updated 7 years ago
• mazen160 / server-status_PWN
  A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-s…
  ☆436Updated 3 years ago
• bugbountyforum / XSS-Radar
  ☆326Updated 7 years ago
• bitquark / dnspop
  Analysis of DNS records to find popular trends
  ☆449Updated 9 years ago
• jobertabma / ground-control
  A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
  ☆545Updated 8 years ago
• nccgroup / singularity
  A DNS rebinding attack framework.
  ☆1,133Updated last week
• nettitude / xss_payloads
  Exploitation for XSS
  ☆720Updated 3 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆326Updated 3 years ago
• raz-varren / xsshell
  An XSS reverse shell framework
  ☆309Updated 6 years ago
• chris408 / ct-exposer
  An OSINT tool that discovers sub-domains by searching Certificate Transparency logs
  ☆472Updated 2 years ago