AutoAR is an automated security reconnaissance tool, ASM and Discord bot for bug bounty hunters and penetration testers. It automates gathering subdomains, scanning ports, detecting technologies, mapping GitHub repositories, fuzzing, testing vulnerabilities, and AI analysis.
☆221Jun 10, 2026Updated last week
Alternatives and similar repositories for AutoAR
Users that are interested in AutoAR are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Webarchive is a Go package for pentesters and developers to interacting with the Wayback Machine's CDX API and integrate web archive util…☆11Feb 25, 2024Updated 2 years ago
- ParamX is a tool designed to extract and categorize interesting subdomains and parameters from URLs.☆33Oct 7, 2025Updated 8 months ago
- Python/Bash automation customization script designed to automate the reconnaissance process☆21Jan 28, 2024Updated 2 years ago
- Extensor is a command-line tool designed to help users quickly gather URLs containing specific file extensions from a given source (e.g.,…☆10Mar 13, 2024Updated 2 years ago
- bash script for automating subdomain enumeration process either passive or active☆30Feb 24, 2026Updated 3 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆15Mar 21, 2025Updated last year
- Cyber Security Notes, Methodology, Resources and Tips☆241Updated this week
- An enhanced OWASP Testing Guide v4.2 with tips, tricks, and new vulnerabilities not in the OWASP list. Features modular testing, actionab…☆93Feb 9, 2025Updated last year
- The Nen Book is a list of personal notes and tips collected from a lot of recourses in different categories like: WebApp Security, API S…☆37Sep 4, 2025Updated 9 months ago
- Tool to extract all subdomains from crt.sh search using RegEx and Web Scraping☆22Jan 5, 2024Updated 2 years ago
- A resources for who want to learn and get deep into client-side bugs☆542Dec 8, 2024Updated last year
- Static-Code-Analysis-Helper helps you perform static code analysis.☆33Feb 20, 2026Updated 3 months ago
- Just "Harmless" Google dorks for bug hunters☆23Nov 25, 2024Updated last year
- ☆22Feb 3, 2024Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- CORSER is a Golang CLI Application for Advanced CORS Misconfiguration Detection☆61Oct 26, 2024Updated last year
- Collection of templates from various resources☆46Apr 30, 2026Updated last month
- Templtor is a bash script that will gather all the community Nuclei templates.☆36Dec 19, 2025Updated 5 months ago
- Amassing wealth in the form of biochemical tactical nuclear hack precision strike notes for existential fulfillment and destruction of th…☆13Feb 19, 2022Updated 4 years ago
- AI-Powered Web Attack Surface Enumeration☆44Feb 5, 2026Updated 4 months ago
- Creating a Fake WhatsApp Message via SQLite: Understanding the Logic Behind the Manipulation☆42Jul 28, 2025Updated 10 months ago
- bounty collection☆45Sep 1, 2024Updated last year
- Find The Admin Panel & SQL Injection Endpoints, Using Google Dorks !!!☆28Nov 15, 2024Updated last year
- ☆26Feb 21, 2026Updated 3 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆35Aug 2, 2022Updated 3 years ago
- ☆25Sep 22, 2025Updated 8 months ago
- Get 10k subdomains in securitytrails using cookie without apikey.☆40Oct 23, 2025Updated 7 months ago
- Collection of Cyber Threat Intelligence sources from the deep and dark web☆16Sep 10, 2025Updated 9 months ago
- ☆35Oct 29, 2020Updated 5 years ago
- Rust-powered HTTP Request Smuggling Scanner.☆121Updated this week
- A collection of Nmap NSE scripts that I made.☆31Jan 14, 2013Updated 13 years ago
- Simple exploit POC for https://promon.co/security-news/strandhogg/ which can steal username and password from targeted android package pr…☆20Jan 14, 2022Updated 4 years ago
- Self-hosted bug bounty programs that are "scammy" or unethical☆173Feb 10, 2026Updated 4 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Various scripts & tools☆12Apr 22, 2024Updated 2 years ago
- get all nuclei temp from emad shanab repo in one run☆36May 7, 2023Updated 3 years ago
- A Collection of Wordlists for Penetration Testing☆39Mar 13, 2026Updated 3 months ago
- All About XSS☆16Oct 23, 2022Updated 3 years ago
- A Roku streaming device controller for the browser using a Go server to host the static content and run a proxy to get around the restric…☆10May 5, 2020Updated 6 years ago
- Start your journey with Bug Bounty.☆15Oct 12, 2022Updated 3 years ago
- A Modern Bug Bounty and Security Research Management Platform☆97Jun 12, 2025Updated last year