Alternatives and similar repositories for ugly-duckling:

Users that are interested in ugly-duckling are comparing it to the libraries listed below

• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆173Updated 3 years ago
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆133Updated 3 years ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆266Updated 2 years ago
• smaranchand / bucky
  Bucky (An automatic S3 bucket discovery tool)
  ☆196Updated 3 years ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆191Updated 4 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆210Updated 3 years ago
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆183Updated 2 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆205Updated last year
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆218Updated 2 years ago
• david3107 / graphql-security-labs
  GraphQL security workshop labs
  ☆108Updated this week
• chennylmf / OWASP-Web-App-Pentesting-checklists
  ☆71Updated 4 years ago
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆127Updated last year
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆157Updated 4 years ago
• 1ndianl33t / urlprobe
  Urls status code & content length checker
  ☆148Updated 4 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆301Updated 2 years ago
• BuffaloWill / burpsuite-project-file-parser
  A Burp Suite Extension for parsing Project Files from the CLI.
  ☆87Updated 7 months ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆193Updated 3 years ago
• trufflesecurity / of-CORS
  ☆151Updated last year
• codingo / bbr
  An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
  ☆210Updated 4 years ago
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆310Updated 5 months ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆258Updated 2 years ago
• AvasDream / pentesting-dockerfiles
  Pentesting/Bugbounty Dockerfiles.
  ☆175Updated 3 years ago
• detectify / cs-challenge
  Detectify Crowdsource Challenge
  ☆69Updated 3 years ago
• BonJarber / fresh-resolvers
  List of fresh DNS resolvers updated daily
  ☆108Updated 2 years ago
• tristanlatr / burpa
  Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…
  ☆197Updated last year
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆209Updated 10 months ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆91Updated 2 months ago
• tismayil / fockcache
  FockCache - Minimalized Test Cache Poisoning
  ☆110Updated 5 years ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆125Updated 4 years ago
• ameenmaali / wordlistgen
  Quickly generate context-specific wordlists for content discovery from lists of URLs or paths
  ☆222Updated 3 years ago