Alternatives and similar repositories for vhost-brute

Users that are interested in vhost-brute are comparing it to the libraries listed below

• vavkamil / XFFenum
  X-Forwarded-For [403 forbidden] enumeration
  ☆98Updated last year
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆127Updated 4 years ago
• BitTheByte / BitBlinder
  BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
  ☆116Updated last month
• SaadAhmedx / Subdomain-Takeover
  ☆58Updated 2 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆62Updated 2 years ago
• JavierOlmedo / UltimateCMSWordlists
  📚 An ultimate collection wordlists of the best-known CMS
  ☆92Updated last year
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆83Updated 3 years ago
• ghostlulzhacks / s3brute
  s3 brute force tool
  ☆44Updated 4 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆107Updated 5 years ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆95Updated 5 years ago
• KingOfBugbounty / SecretFinder
  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
  ☆35Updated 5 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆82Updated 3 years ago
• dwisiswant0 / wadl-dumper
  Dump all available paths and/or endpoints on WADL file.
  ☆98Updated 2 months ago
• MichaelStott / CRLF-Injection-Scanner
  Command line tool for testing CRLF injection on a list of domains.
  ☆165Updated last year
• vincd / wappylyzer
  Implementation of Wappalyzer in Python
  ☆55Updated 3 years ago
• Quitten / XSSor
  XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…
  ☆62Updated 4 years ago
• ghostlulzhacks / waybackMachine
  ☆61Updated 4 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• SmoZy92 / Shodomain
  Shodan subdomain finder
  ☆67Updated 5 years ago
• tarunkant / EndPoint-Finder
  Finds the End-Points in JavaScript files
  ☆97Updated 4 years ago
• PatrikFehrenbach / amass-tools
  ☆105Updated 5 years ago
• ghostlulzhacks / waybackSqliScanner
  ☆199Updated 6 years ago
• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆44Updated 2 years ago
• pry0cc / subgen
  A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!
  ☆87Updated 5 years ago
• gwen001 / myrecon.py
  My recon script
  ☆50Updated 6 years ago
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆185Updated 5 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆87Updated 3 years ago
• emadshanab / subs_all
  Subdomain Enumeration Wordlist. 8956437 unique words. Updated.
  ☆75Updated 5 years ago
• hakluke / haktldextract
  Extract domains/subdomains from URLs en masse
  ☆138Updated 2 years ago
• storenth / lazyrecon
  Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.
  ☆150Updated 2 years ago