jhaddix/CSPReconGO

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jhaddix/CSPReconGO)

jhaddix / CSPReconGO

☆108

Alternatives and similar repositories for CSPReconGO

Users that are interested in CSPReconGO are comparing it to the libraries listed below

Sorting:

Tedixx / dmarc-subdomains
View on GitHub
Tool to parse subdomains from dmarc.live
☆150Apr 19, 2024Updated last year
itsmenaga / Nuclei-Templates-All
View on GitHub
☆29May 22, 2024Updated last year
g0ldencybersec / gungnir
View on GitHub
CT Log Scanner
☆517Dec 26, 2025Updated 2 months ago
shriyanss / subdomains_wordlist
View on GitHub
Subdomains wordlist generted from subdomains of public bug bounty programs
☆11Mar 25, 2025Updated 11 months ago
xssdoctor / graphqlMaker
View on GitHub
Finds graphql queries in javascript files
☆69May 18, 2024Updated last year
xnl-h4ck3r / webpaste
View on GitHub
Save your dorking results to the terminal. A modified version of TomNomNom's amazing tool!
☆98Mar 4, 2025Updated last year
DotNetRussell / Ensemble
View on GitHub
A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting t…
☆50Oct 15, 2024Updated last year
surviveRuins / css-scrollbar-attack
View on GitHub
PoC for leaking text nodes via CSS injection
☆25Jul 27, 2024Updated last year
Saitle / Yamilicious
View on GitHub
Custom nuclei templates for bug hunting.....
☆26May 30, 2024Updated last year
xnl-h4ck3r / xnldorker
View on GitHub
Gather results of dorks across a number of search engines
☆200Jan 22, 2026Updated last month
jeetpal2007 / extensor
View on GitHub
Extensor is a command-line tool designed to help users quickly gather URLs containing specific file extensions from a given source (e.g.,…
☆10Mar 13, 2024Updated last year
jhaddix / GraphRunner
View on GitHub
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
☆13Nov 1, 2023Updated 2 years ago
Ibrahim-sec / JSNotify
View on GitHub
JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…
☆18Nov 15, 2023Updated 2 years ago
BishopFox / sj
View on GitHub
A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
☆723Updated this week
n00py / DockerKnocker
View on GitHub
Exploits Unauth Docker API
☆43Apr 18, 2025Updated 10 months ago
g0ldencybersec / CloudRecon
View on GitHub
☆522Apr 29, 2024Updated last year
Leoid / MatchandReplace
View on GitHub
Match and Replace script used to automatically generate JSON option file to BurpSuite
☆215May 13, 2019Updated 6 years ago
JoshMorrison99 / isXSS-Burp
View on GitHub
Passively check for XSS character encodings
☆18Updated this week
kevin-mizu / domloggerpp
View on GitHub
A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
☆773Dec 9, 2025Updated 2 months ago
Moopinger / smugglefuzz
View on GitHub
A rapid HTTP downgrade smuggling scanner written in Go.
☆313May 16, 2024Updated last year
jhaddix / awsScrape
View on GitHub
A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
☆239Jan 10, 2024Updated 2 years ago
sa1tama0 / Blind-XSS-SVG
View on GitHub
Blind XSS SVG
☆10Mar 27, 2023Updated 2 years ago
nxtexploit / LeakScanner
View on GitHub
🔍LeakScanner - Inspired by Gitleaks
☆13Aug 23, 2024Updated last year
SeifElsallamy / Blind-XSS-Manager
View on GitHub
Never forget where you inject.
☆298Aug 15, 2025Updated 6 months ago
jthack / ffufai
View on GitHub
AI-powered ffuf wrapper
☆646Dec 4, 2025Updated 3 months ago
0x999-x / jsluicepp
View on GitHub
jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
☆291Apr 9, 2024Updated last year
BlackFan / Burp-Ai-Substitutor
View on GitHub
AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.
☆27Apr 30, 2025Updated 10 months ago
j3ssie / json-cleaner
View on GitHub
The utility aims to clean up output generated by popular tools by calculating a hash based on specific JSON values to removing junk data.
☆16Apr 5, 2024Updated last year
jhaddix / sslScrape
View on GitHub
SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
☆47Jan 19, 2019Updated 7 years ago
robre / jsmon
View on GitHub
a javascript change monitoring tool for bugbounties
☆711Jul 31, 2024Updated last year
g0ldencybersec / sus_params
View on GitHub
☆212Jul 11, 2024Updated last year
nullenc0de / FFUF-Workflow-Tool
View on GitHub
This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…
☆36Nov 5, 2024Updated last year
orwagodfather / AspDotNetWrapper-Edited-
View on GitHub
This Tool To Test Machine Keys In View State
☆85Oct 11, 2024Updated last year
assetnote / surf
View on GitHub
Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
☆753Dec 19, 2023Updated 2 years ago
harisec / orange-confusion-attacks
View on GitHub
Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
☆21Aug 25, 2024Updated last year
BishopFox / jsluice
View on GitHub
Extract URLs, paths, secrets, and other interesting bits from JavaScript
☆1,773May 22, 2024Updated last year
Arcanum-Sec / Scopify
View on GitHub
☆197Apr 23, 2025Updated 10 months ago
nullenc0de / discover
View on GitHub
Easy discovery of assets
☆13Jun 22, 2022Updated 3 years ago
karrni / sparrot
View on GitHub
Discover related domains using Whois data from whoxy.com
☆15May 30, 2023Updated 2 years ago