j3ssie / metabigor
OSINT tools and more but without API key
☆1,312Updated 11 months ago
Alternatives and similar repositories for metabigor:
Users that are interested in metabigor are comparing it to the libraries listed below
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering…☆1,400Updated this week
- Making Favicon.ico based Recon Great again !☆1,162Updated last year
- Subdomain and target enumeration tool built for offensive security testing☆858Updated 9 months ago
- The Swiss Army knife for automated Web Application Testing☆2,210Updated 10 months ago
- Subdomain takeover vulnerability checker☆1,165Updated 6 months ago
- A collection of tools to perform searches on GitHub.☆1,394Updated 2 years ago
- HostHunter a recon tool for discovering hostnames using OSINT techniques.☆1,111Updated last year
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆954Updated 2 months ago
- The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.☆1,192Updated last month
- Subdomain Takeover tool written in Go☆1,952Updated last year
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned ent…☆1,839Updated 4 months ago
- Automation for javascript recon in bug bounty.☆968Updated last year
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,111Updated 9 months ago
- A Powerful Subdomain Takeover Tool☆942Updated last year
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,271Updated 6 months ago
- Go client to communicate with Chaos DB API.☆694Updated this week
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆783Updated last year
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.☆1,786Updated 10 months ago
- The fastest dork scanner written in Go.☆1,182Updated last year
- Fetch many paths for many hosts - without killing the hosts☆1,638Updated last year
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,128Updated 10 months ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆954Updated 3 years ago
- Fetches javascript file from a list of URLS or subdomains.☆759Updated last year
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆2,669Updated 9 months ago
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,293Updated last week
- declutters url lists for crawling/pentesting☆1,319Updated last month
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,714Updated 11 months ago
- A fuzzer for detecting open redirect vulnerabilities☆736Updated 8 months ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆800Updated 2 years ago
- Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.☆1,237Updated 10 months ago