Alternatives and similar repositories for sub.sh

Users that are interested in sub.sh are comparing it to the libraries listed below

• dark-warlord14 / ffufplus

  View on GitHub
  You can read the writeup on this script here
  ☆192Sep 30, 2021Updated 4 years ago
• lc / subjs

  View on GitHub
  Fetches javascript file from a list of URLS or subdomains.
  ☆834Jul 22, 2025Updated 6 months ago
• x1mdev / ReconPi

  View on GitHub
  ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.
  ☆728May 6, 2022Updated 3 years ago
• JoshuaMart / AutoRecon

  View on GitHub
  Simple shell script for automated domain recognition with some tools
  ☆304Nov 11, 2020Updated 5 years ago
• shiblisec / Rekon

  View on GitHub
  The project contains multiple shell scripts for automating the tasks during recon.
  ☆174Aug 21, 2023Updated 2 years ago
• allyomalley / LiveTargetsFinder

  View on GitHub
  Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…
  ☆367Jul 23, 2022Updated 3 years ago
• 0xspade / Automated-Scanner

  View on GitHub
  Trying to make automated recon for bug bounties
  ☆255May 3, 2021Updated 4 years ago
• TypeError / domained

  View on GitHub
  Multi Tool Subdomain Enumeration
  ☆724Apr 11, 2021Updated 4 years ago
• SolomonSklash / chomp-scan

  View on GitHub
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆398Apr 17, 2020Updated 5 years ago
• MichaelStott / CRLF-Injection-Scanner

  View on GitHub
  Command line tool for testing CRLF injection on a list of domains.
  ☆166Apr 14, 2024Updated last year
• dark-warlord14 / JSScanner

  View on GitHub
  You can read the writeup on this script here
  ☆274Jul 12, 2020Updated 5 years ago
• KathanP19 / gaussrf

  View on GitHub
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆173Nov 11, 2020Updated 5 years ago
• Cillian-Collins / subscraper

  View on GitHub
  Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…
  ☆223Jul 10, 2020Updated 5 years ago
• ghsec / ghsec-jaeles-signatures

  View on GitHub
  Signatures for jaeles scanner by @j3ssie
  ☆117Apr 20, 2024Updated last year
• Mad-robot / Spartan

  View on GitHub
  My Recon Automation
  ☆194May 28, 2021Updated 4 years ago
• ghsec / webHunt

  View on GitHub
  Web App bug hunting
  ☆577Nov 26, 2025Updated 2 months ago
• AlephNullSK / dnsgen

  View on GitHub
  DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…
  ☆1,044Jan 3, 2025Updated last year
• tomnomnom / hacks

  View on GitHub
  A collection of hacks and one-off scripts
  ☆2,418Mar 13, 2025Updated 11 months ago
• capt-meelo / LazyRecon

  View on GitHub
  An automated approach to performing recon for bug bounty hunting and penetration testing.
  ☆451Jul 21, 2020Updated 5 years ago
• dark-warlord14 / ffufalias

  View on GitHub
  Alias for storing ffuf results
  ☆20May 23, 2020Updated 5 years ago
• screetsec / Sudomy

  View on GitHub
  Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…
  ☆2,317Jun 27, 2024Updated last year
• nahamsec / crtndstry

  View on GitHub
  Yet another subdomain finder
  ☆209Jan 20, 2020Updated 6 years ago
• ZephrFish / Wordlists

  View on GitHub
  Various Payload wordlists
  ☆239Apr 26, 2025Updated 9 months ago
• projectdiscovery / dnsprobe

  View on GitHub
  DNSProb is a tool built on top of retryabledns that allows you to perform multiple dns queries of your choice with a list of user supplie…
  ☆282Dec 21, 2020Updated 5 years ago
• m4ll0k / BBTz

  View on GitHub
  BBT - Bug Bounty Tools (examples💡)
  ☆1,880Apr 5, 2024Updated last year
• ghostlulzhacks / waybackSqliScanner

  View on GitHub
  ☆199Jun 6, 2019Updated 6 years ago
• Broly157 / auto.sh

  View on GitHub
  This script is (Mainly) for Beginner's
  ☆63Dec 30, 2021Updated 4 years ago
• dwisiswant0 / unew

  View on GitHub
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆128Mar 2, 2022Updated 3 years ago
• cihanmehmet / cloudflarebypass

  View on GitHub
  Cloudflare Bypass Script
  ☆23Dec 12, 2019Updated 6 years ago
• gwen001 / github-search

  View on GitHub
  A collection of tools to perform searches on GitHub.
  ☆1,464Feb 9, 2023Updated 3 years ago
• wagiro / BurpBounty

  View on GitHub
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,771Apr 26, 2024Updated last year
• KathanP19 / Gxss

  View on GitHub
  A tool to check a bunch of URLs that contain reflecting params.
  ☆599Aug 4, 2024Updated last year
• theblackturtle / fprobe

  View on GitHub
  Take a list of domains/subdomains and probe for working http/https server.
  ☆192Sep 8, 2020Updated 5 years ago
• gwen001 / myrecon.py

  View on GitHub
  My recon script
  ☆50Dec 23, 2019Updated 6 years ago
• devanshbatham / OpenRedireX

  View on GitHub
  A fuzzer for detecting open redirect vulnerabilities
  ☆782Jul 1, 2024Updated last year
• 1ndianl33t / Gf-Patterns

  View on GitHub
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,397Sep 13, 2024Updated last year
• KathanP19 / JSFScan.sh

  View on GitHub
  Automation for javascript recon in bug bounty.
  ☆1,067Sep 9, 2023Updated 2 years ago
• robre / scripthunter

  View on GitHub
  Tool to find JavaScript files on Websites
  ☆526Nov 2, 2023Updated 2 years ago
• jaeles-project / jaeles

  View on GitHub
  The Swiss Army knife for automated Web Application Testing
  ☆2,324May 8, 2024Updated last year