Alternatives and similar repositories for ugly-duckling

Users that are interested in ugly-duckling are comparing it to the libraries listed below

• optiv / mobile-nuclei-templates

  View on GitHub
  ☆435Jun 1, 2021Updated 4 years ago
• PatrikFehrenbach / amass-tools

  View on GitHub
  ☆105Oct 18, 2020Updated 5 years ago
• detectify / page-fetch

  View on GitHub
  Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…
  ☆530Apr 23, 2025Updated 9 months ago
• honoki / bbrf-agents

  View on GitHub
  A collection of BBRF agents that can be deployed to AWS lambda
  ☆24Nov 17, 2024Updated last year
• hakluke / hakcron

  View on GitHub
  Easily schedule commands to run multiple times at set intervals (like a cronjob, but with one command)
  ☆84Apr 5, 2021Updated 4 years ago
• 0xJeti / intitools

  View on GitHub
  Collection of tools to interact with Intigriti website
  ☆16Aug 10, 2024Updated last year
• danielthatcher / smuggles

  View on GitHub
  An HTTP request smuggling scanner designed to work at scale
  ☆23Oct 2, 2022Updated 3 years ago
• pry0cc / nahamcon-axiom-demo-2021

  View on GitHub
  The commands and scripts I used in the Live Recon Village talks
  ☆37Mar 14, 2021Updated 4 years ago
• ambalabanov / cswsh-scanner

  View on GitHub
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Jul 31, 2020Updated 5 years ago
• AlfredBerg / dnsline

  View on GitHub
  Tool for making it easy to collect dns results from the CLI
  ☆40Aug 14, 2024Updated last year
• Josue87 / gotator

  View on GitHub
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆503Jul 17, 2022Updated 3 years ago
• neex / http2smugl

  View on GitHub
  ☆561Mar 27, 2025Updated 10 months ago
• amalmurali47 / swagroutes

  View on GitHub
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆61Apr 23, 2023Updated 2 years ago
• devanshbatham / CertEagle

  View on GitHub
  Weaponizing Live CT logs for automated monitoring of assets
  ☆134Sep 12, 2021Updated 4 years ago
• bp0lr / dmut

  View on GitHub
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆155Nov 24, 2023Updated 2 years ago
• DK9510 / automate-with-actions

  View on GitHub
  ☆18Apr 7, 2022Updated 3 years ago
• raverrr / plution

  View on GitHub
  Prototype pollution scanner using headless chrome
  ☆219Jul 27, 2022Updated 3 years ago
• honoki / bbrf-server

  View on GitHub
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆328Jul 11, 2025Updated 7 months ago
• FleexSecurity / fleex

  View on GitHub
  Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.
  ☆265Feb 5, 2026Updated last week
• payloadartist / recon

  View on GitHub
  NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.
  ☆78Nov 5, 2022Updated 3 years ago
• DigeeX / raider

  View on GitHub
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Sep 14, 2021Updated 4 years ago
• deepak0401 / Front-Page-Exploit

  View on GitHub
  HTTP requests of FrontPage expolit
  ☆25Dec 19, 2013Updated 12 years ago
• yashrs / safecopy

  View on GitHub
  Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…
  ☆18May 17, 2020Updated 5 years ago
• j3ssie / goverview

  View on GitHub
  goverview - Get an overview of the list of URLs
  ☆143Dec 5, 2025Updated 2 months ago
• thelicato / fire

  View on GitHub
  Take domains on stdin and output them on stdout if they get resolved
  ☆32May 27, 2022Updated 3 years ago
• dwisiswant0 / wadl-dumper

  View on GitHub
  Dump all available paths and/or endpoints on WADL file.
  ☆98Nov 24, 2025Updated 2 months ago
• daffainfo / Key-Checker

  View on GitHub
  Go scripts for checking API key / access token validity
  ☆220Aug 3, 2021Updated 4 years ago
• Abdulrahman-Kamel / dpfilter

  View on GitHub
  BugBounty , sort and delete duplicates param value without missing original value
  ☆22Jul 31, 2021Updated 4 years ago
• Cgboal / SonarSearch

  View on GitHub
  A rapid API for the Project Sonar dataset
  ☆658May 5, 2023Updated 2 years ago
• hakluke / hakscale

  View on GitHub
  Distribute ordinary bash commands over many systems
  ☆168Aug 29, 2022Updated 3 years ago
• jhaddix / awsScrape

  View on GitHub
  A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
  ☆239Jan 10, 2024Updated 2 years ago
• visma-prodsec / confused

  View on GitHub
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆775Aug 19, 2024Updated last year
• bp0lr / gauplus

  View on GitHub
  ☆299Jul 16, 2022Updated 3 years ago
• devanshbatham / FavFreak

  View on GitHub
  Making Favicon.ico based Recon Great again !
  ☆1,260Aug 29, 2023Updated 2 years ago
• defparam / h1data

  View on GitHub
  ☆23Mar 29, 2022Updated 3 years ago
• ethicalhackingplayground / erebus

  View on GitHub
  Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.
  ☆134Jul 11, 2021Updated 4 years ago
• venom26 / recon

  View on GitHub
  information gathering
  ☆281Jul 12, 2025Updated 7 months ago
• assetnote / kiterunner

  View on GitHub
  Contextual Content Discovery Tool
  ☆3,085Apr 29, 2024Updated last year
• z0mb13s3c / httpx2bbrf

  View on GitHub
  Simple tool to send the json output from HTTPX to BBRF
  ☆11Mar 30, 2023Updated 2 years ago