Fetches javascript file from a list of URLS or subdomains.
☆835Jul 22, 2025Updated 7 months ago
Alternatives and similar repositories for subjs
Users that are interested in subjs are comparing it to the libraries listed below
Sorting:
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,401Sep 13, 2024Updated last year
- Accept URLs on stdin, replace all query string values with a user-supplied value☆865Nov 23, 2022Updated 3 years ago
- A python script that finds endpoints in JavaScript files☆4,286Apr 13, 2024Updated last year
- A tool to fastly get all javascript sources/files☆858Jul 4, 2025Updated 7 months ago
- Pull out bits of URLs provided on stdin☆1,287Aug 12, 2023Updated 2 years ago
- Automation for javascript recon in bug bounty.☆1,069Sep 9, 2023Updated 2 years ago
- ☆299Jul 16, 2022Updated 3 years ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆3,010Jun 24, 2024Updated last year
- BBT - Bug Bounty Tools (examples💡)☆1,883Apr 5, 2024Updated last year
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆1,051Jan 3, 2025Updated last year
- A collection of hacks and one-off scripts☆2,424Mar 13, 2025Updated 11 months ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.☆4,837Jan 1, 2025Updated last year
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆559Mar 8, 2025Updated 11 months ago
- Making Favicon.ico based Recon Great again !☆1,266Aug 29, 2023Updated 2 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆598Aug 4, 2024Updated last year
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,382May 26, 2024Updated last year
- Gotator is a tool to generate DNS wordlists through permutations.☆505Jul 17, 2022Updated 3 years ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆1,024Updated this week
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.☆6,075Aug 14, 2024Updated last year
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆279Feb 11, 2021Updated 5 years ago
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering…☆1,593Updated this week
- A collection of tools to perform searches on GitHub.☆1,467Feb 9, 2023Updated 3 years ago
- You can read the writeup on this script here☆273Jul 12, 2020Updated 5 years ago
- A wrapper around grep, to help you grep for things☆2,078Jun 8, 2024Updated last year
- a javascript change monitoring tool for bugbounties☆711Jul 31, 2024Updated last year
- declutters url lists for crawling/pentesting☆1,526Feb 23, 2025Updated last year
- Fetch many paths for many hosts - without killing the hosts☆1,693Feb 3, 2024Updated 2 years ago
- Secret and/or credential patterns used for gf.☆243Feb 10, 2023Updated 3 years ago
- Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.☆729Jan 16, 2024Updated 2 years ago
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned ent…☆2,116Nov 18, 2024Updated last year
- Find subdomains on GitHub.☆823Mar 28, 2023Updated 2 years ago
- Tool to find JavaScript files on Websites☆526Nov 2, 2023Updated 2 years ago
- The Swiss Army knife for automated Web Application Testing☆2,322May 8, 2024Updated last year
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,028Feb 5, 2021Updated 5 years ago
- A fuzzer for detecting open redirect vulnerabilities☆782Jul 1, 2024Updated last year
- Subdomain Takeover tool written in Go☆2,028Aug 13, 2023Updated 2 years ago
- This tool can be used to brute discover GET and POST parameters☆1,393Aug 24, 2019Updated 6 years ago
- A Powerful Subdomain Takeover Tool☆963Oct 17, 2023Updated 2 years ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆394Jun 17, 2020Updated 5 years ago