fleetcaptain / Turbolist3rView external linksLinks
Subdomain enumeration tool with analysis features for discovered domains
☆394Nov 16, 2025Updated 3 months ago
Alternatives and similar repositories for Turbolist3r
Users that are interested in Turbolist3r are comparing it to the libraries listed below
Sorting:
- Cobalt Strike cna script for randomized argument spoofing☆51Apr 4, 2019Updated 6 years ago
- Automated blind-xss search for Burp Suite☆287Oct 10, 2019Updated 6 years ago
- Multi Tool Subdomain Enumeration☆724Apr 11, 2021Updated 4 years ago
- This tool can be used to brute discover GET and POST parameters☆1,390Aug 24, 2019Updated 6 years ago
- A Powerful Subdomain Takeover Tool☆962Oct 17, 2023Updated 2 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆293Aug 23, 2019Updated 6 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆470Nov 14, 2019Updated 6 years ago
- Fast subdomains enumeration tool for penetration testers☆10,802Aug 2, 2024Updated last year
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆305Sep 7, 2022Updated 3 years ago
- Subdomain Takeover tool written in Go☆2,026Aug 13, 2023Updated 2 years ago
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,528Jul 21, 2025Updated 6 months ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,317Jun 27, 2024Updated last year
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆280Feb 11, 2021Updated 5 years ago
- A Tool for Domain Flyovers☆5,897May 22, 2022Updated 3 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆398Apr 17, 2020Updated 5 years ago
- A simple CORS misconfiguration scanner☆423Aug 14, 2020Updated 5 years ago
- Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...☆71Apr 10, 2019Updated 6 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆94Mar 18, 2024Updated last year
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆93Aug 27, 2019Updated 6 years ago
- HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.☆248Sep 9, 2021Updated 4 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆564Mar 4, 2023Updated 2 years ago
- Credentials gathering tool automating remote procdump and parse of lsass process.☆781Jun 20, 2020Updated 5 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,028Feb 5, 2021Updated 5 years ago
- PostShell - Post Exploitation Bind/Backconnect Shell☆83Sep 9, 2019Updated 6 years ago
- ASN reconnaissance script☆131Jan 25, 2024Updated 2 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,770Apr 26, 2024Updated last year
- Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting☆41Feb 18, 2019Updated 6 years ago
- DNS Enumeration with Asynchronicity☆45Oct 30, 2018Updated 7 years ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆662Jan 30, 2019Updated 7 years ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆153Dec 7, 2022Updated 3 years ago
- C# PoC implementation for bypassing AMSI via in memory patching☆66Jul 20, 2020Updated 5 years ago
- R3C0Nizer is the first ever CLI based menu-driven web application B-Tier recon framework.☆152Apr 2, 2021Updated 4 years ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,239Jan 8, 2026Updated last month
- A collection of tools to perform searches on GitHub.☆1,464Feb 9, 2023Updated 3 years ago
- Vulnerability scanner based on vulners.com search API☆884Oct 1, 2025Updated 4 months ago
- Find AWS S3 buckets and test their permissions.☆395Mar 28, 2023Updated 2 years ago
- This tests a list of s3 buckets to see if they have dir listings enabled or if they are uploadable☆55Dec 10, 2025Updated 2 months ago
- Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and us…☆575Jun 19, 2024Updated last year
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,143Jun 25, 2019Updated 6 years ago