jakejarvis / subtake
Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
☆148Updated 4 years ago
Alternatives and similar repositories for subtake:
Users that are interested in subtake are comparing it to the libraries listed below
- List of domains in scope for bug bounties (HackerOne, Bugcrowd, etc.)☆71Updated 3 years ago
- A tool to find sensitive keys and passwords in Travis logs☆141Updated 3 years ago
- a .js scanner, built in php. designed to scrape urls and other info☆211Updated 7 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆168Updated 4 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆149Updated 3 years ago
- Push notifications for passive DNS data☆107Updated 8 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆138Updated 5 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆297Updated last year
- Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers …☆141Updated 9 months ago
- You can read the writeup on this script here☆269Updated 4 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆102Updated 4 years ago
- A permutation generation tool written in golang☆209Updated 5 years ago
- A script to extract domain names from Content Security Policy(CSP) headers☆108Updated 5 years ago
- ☆240Updated 6 years ago
- Weaponizing Live CT logs for automated monitoring of assets☆132Updated 3 years ago
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆199Updated last year
- subdomain bruteforce list☆100Updated 3 months ago
- A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…☆189Updated 4 years ago
- SHELLING - a comprehensive OS command injection payload generator☆107Updated 5 years ago
- A collection of scripts to extend Burp Suite☆139Updated 5 years ago
- Extract relative urls from a heap snapshot☆85Updated 3 years ago
- Urls status code & content length checker☆148Updated 4 years ago
- Burp Suite Extension to monitor new scope☆197Updated 3 years ago
- HTTP parameter discovery suite.☆94Updated 4 years ago
- You can read the writeup on this script here☆191Updated 3 years ago
- Various Payload wordlists☆234Updated 4 years ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆222Updated 4 years ago
- List HackerOne private program assets☆150Updated 3 years ago