Alternatives and similar repositories for bounty-domains

Users that are interested in bounty-domains are comparing it to the libraries listed below

• jakejarvis / subtake
  Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
  ☆149Updated 5 years ago
• Shashank-In / TravisLeaks
  A tool to find sensitive keys and passwords in Travis logs
  ☆144Updated 4 years ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆175Updated 3 years ago
• Abss0x7tbh / bass
  Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers …
  ☆147Updated last year
• KathanP19 / gaussrf
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆171Updated 4 years ago
• SmoZy92 / Shodomain
  Shodan subdomain finder
  ☆67Updated 5 years ago
• pwn0sec / PwnSSRF
  A Python based scanner to find potential SSRF parameters in a web application.
  ☆72Updated 4 years ago
• random-robbie / bugbountydork
  Bug Bounty Dork
  ☆71Updated 3 years ago
• tarunkant / EndPoint-Finder
  Finds the End-Points in JavaScript files
  ☆95Updated 3 years ago
• ghostlulzhacks / waybackSqliScanner
  ☆194Updated 6 years ago
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆82Updated 3 years ago
• Sambal0x / Recon-tools
  Some of my bug bounty tools
  ☆51Updated 5 years ago
• MichaelStott / CRLF-Injection-Scanner
  Command line tool for testing CRLF injection on a list of domains.
  ☆163Updated last year
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆112Updated 3 years ago
• BitTheByte / BitBlinder
  BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
  ☆113Updated 2 years ago
• lc / DOD-Recon
  Recon for Department of Defense HackerOne program
  ☆45Updated 6 years ago
• 0xdekster / deksterecon
  Web Application recon automation
  ☆126Updated 4 years ago
• vavkamil / XFFenum
  X-Forwarded-For [403 forbidden] enumeration
  ☆94Updated last year
• junnlikestea / vita
  A tool to find subdomains or domains from passive sources.
  ☆115Updated 4 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆155Updated 4 years ago
• gwen001 / bugbountytips
  Webapp to search tips on Twitter through #bugbountytips
  ☆72Updated 2 years ago
• PatrikFehrenbach / amass-tools
  ☆108Updated 4 years ago
• shivsahni / NSBrute
  Python utility to takeover domains vulnerable to AWS NS Takeover
  ☆87Updated 2 years ago
• subfinder / goaltdns
  A permutation generation tool written in golang
  ☆210Updated 6 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆86Updated 4 years ago
• hahwul / XSS-Payload-without-Anything
  XSS Payload without Anything.
  ☆107Updated 6 years ago
• tomnomnom / dnsgrep
  Quickly Search Large DNS Datasets
  ☆60Updated 5 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆193Updated 3 years ago
• zseano / JS-Scan
  a .js scanner, built in php. designed to scrape urls and other info
  ☆221Updated 8 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆52Updated 4 years ago