hueristiq / xurlfind3r
A command-line utility designed to discover URLs for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact directly with the target but instead gathers data that is already publicly available.
☆602Updated this week
Alternatives and similar repositories for xurlfind3r:
Users that are interested in xurlfind3r are comparing it to the libraries listed below
- Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search …☆534Updated last year
- ⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)☆853Updated 3 weeks ago
- Simple Google Dorks search tool☆288Updated last week
- Go client to communicate with Chaos DB API.☆714Updated last week
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆444Updated 3 years ago
- Find subdomains with GPT, for free☆346Updated last year
- Small tool to Grab subdomains using Shodan api.☆446Updated 6 months ago
- Gotator is a tool to generate DNS wordlists through permutations.☆477Updated 2 years ago
- Golang client for querying SecurityTrails API data☆556Updated last year
- jsleak is a tool to find secret , paths or links in the source code during the recon.☆527Updated 3 months ago
- AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,☆643Updated last year
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,325Updated 3 weeks ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆970Updated last week
- Fast and customizable subdomain wordlist generator using DSL☆808Updated 3 weeks ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆450Updated last year
- MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilitie…☆969Updated 9 months ago
- A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanning☆489Updated last year
- An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.☆625Updated 2 years ago
- ☆316Updated 3 months ago
- 「🔑」A tool used to hunt down API key leaks in JS files and pages☆697Updated last month
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…☆871Updated 2 years ago
- declutters url lists for crawling/pentesting☆1,359Updated 2 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆867Updated last year
- SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty☆589Updated last week
- Discover new target domains using Content Security Policy☆426Updated 2 weeks ago
- A fuzzer for detecting open redirect vulnerabilities☆748Updated 10 months ago
- Heuristic Vulnerable Parameter Scanner☆591Updated last year
- Open Redirection Analyzer☆778Updated 2 years ago
- Automation Recon tool which works with Large & Medium scopes. It performs a lot of tasks and gets back all the results in separated files…☆682Updated 9 months ago
- Scrape domain names from SSL certificates of arbitrary hosts☆643Updated last year