A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact directly with the target but instead gathers data that is already publicly available.
☆120Feb 23, 2026Updated 4 months ago
Alternatives and similar repositories for xsubfind3r
Users that are interested in xsubfind3r are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A web application attack surface mapping tool. It takes in a list of urls then performs numerous probes☆15Aug 4, 2022Updated 3 years ago
- A command-line utility designed to recursively spider webpages for URLs. It works by actively traversing websites - following links embed…☆110Dec 8, 2025Updated 7 months ago
- A CLI utility to scan S3 buckets permissions☆14May 14, 2023Updated 3 years ago
- A command-line utility designed to discover URLs for a given domain in a simple, efficient way. It works by gathering information from a …☆707Feb 23, 2026Updated 4 months ago
- Looks for parameters in urls☆35Oct 14, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- CLI tool that extracts a regex pattern from a list of urls ( Rust )☆62Sep 14, 2022Updated 3 years ago
- Automate bug bounty recon using bash alias☆15Aug 6, 2024Updated last year
- Nodesub is a command-line tool for finding subdomains in bug bounty programs☆148Aug 1, 2024Updated last year
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆304Sep 8, 2023Updated 2 years ago
- De-clutter a list of URLs☆389Mar 8, 2026Updated 4 months ago
- A wrapper around tools used for subdomain enumeration, to automate the workflow, on a given domain, written in bash.☆79Aug 2, 2022Updated 3 years ago
- Use favicons to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.☆245Updated this week
- Javascript file change monitoring☆22Jun 22, 2026Updated 2 weeks ago
- Tool for testing reflections in the HTTP responses☆60Jun 10, 2023Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Repo for hosting rayder workflows☆63Aug 31, 2023Updated 2 years ago
- A command-line utility for auditing DNS configuration using Zonemaster API☆32Aug 21, 2023Updated 2 years ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆104May 2, 2024Updated 2 years ago
- Striping CDN & WAF IPs from a list of IP Addresses☆79May 6, 2025Updated last year
- uforall is a fast url crawler this tool crawl all URLs number of different sources, alienvault,WayBackMachine,urlscan,commoncrawl☆53Nov 3, 2025Updated 8 months ago
- A path-normalization pentesting tool.☆152Apr 2, 2026Updated 3 months ago
- Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitati…☆463Jan 25, 2024Updated 2 years ago
- Bash script to extract data from the Waybackmachine☆11Mar 15, 2021Updated 5 years ago
- [experiment] Generate Nuclei templates for CVEs using chatGPT☆20Nov 10, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Check IP addresses against known cloud provider IP address ranges☆48Feb 7, 2026Updated 5 months ago
- TrafficWatch, a packet sniffer tool, allows you to monitor and analyze network traffic from PCAP files☆136Jun 1, 2024Updated 2 years ago
- lite version of gobuster. Only subdomain brute. 内网轻量化子域名爆破工具☆44Jun 25, 2021Updated 5 years ago
- Ffuf output browser☆38Feb 25, 2023Updated 3 years ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆386May 19, 2023Updated 3 years ago
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆219Jul 14, 2024Updated last year
- This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities☆31Jan 17, 2022Updated 4 years ago
- A bash script that automates port scanning on specified target host(s). The aim of the scripts is reducing scan time, increasing scan eff…☆12May 19, 2026Updated last month
- Filter URLs that match your scope file for bugbounty.☆11May 23, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Unofficial Acunetix CLI tool for automated pentesting and bug hunting across large scopes.☆87Nov 5, 2023Updated 2 years ago
- ☆18Apr 7, 2022Updated 4 years ago
- An Automated Subdomain Enumeration Tool☆292Oct 16, 2024Updated last year
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆141Jun 27, 2023Updated 3 years ago
- Beacon Object Files used for Cobalt Strike☆19Jul 18, 2023Updated 2 years ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆48Apr 1, 2023Updated 3 years ago
- Multithreaded Host Header Redirection Scanner☆14Nov 10, 2020Updated 5 years ago