Passive reconnaissance/enumeration of interesting targets by watching for SSL certificates being issued
β67Oct 11, 2022Updated 3 years ago
Alternatives and similar repositories for Substr3am
Users that are interested in Substr3am are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- πΊ Convert nmap XML output to beautiful JSONβ16Mar 17, 2023Updated 3 years ago
- This extension provides a central location for viewing all GraphQL requests/responses within a Burp project. It provides a clean UI that β¦β15Feb 24, 2022Updated 4 years ago
- Reestructured LemonBooster.β47Jul 26, 2024Updated last year
- A notification script to help with Recon Stuffβ14Jun 8, 2021Updated 4 years ago
- A Web-UI for subdomain enumeration (subfinder)β55Jun 5, 2020Updated 5 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- A bash script that automates the scanning of a target network for HTTP resources through XXEβ38Dec 2, 2020Updated 5 years ago
- A simple script to check for insecurely exposed git repositories.β12Mar 17, 2019Updated 7 years ago
- Parallelized enumeration tool for red team engagements and bug bounty programs.β16Mar 31, 2021Updated 5 years ago
- Subvenkon is a subdomain enumerator from Venkonβ22Jun 22, 2020Updated 5 years ago
- all manner of wordlistsβ24Jan 19, 2022Updated 4 years ago
- Push notifications to Slack channel or to custom server based on BurpSuite response conditions.β17Nov 26, 2020Updated 5 years ago
- 4xxbypassβ66Mar 29, 2021Updated 5 years ago
- An another JWT cracker but really fast!β12Jan 26, 2023Updated 3 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the β¦β53Jul 14, 2021Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Customisable and automated HTTP header injectionβ294Jun 27, 2024Updated last year
- β17Feb 4, 2020Updated 6 years ago
- A Multi-Processing Tool for collecting and extracting information to an Excel file from a Burp Suite output file.β10Apr 8, 2024Updated 2 years ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()β¦β11Apr 9, 2021Updated 5 years ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.β65Apr 13, 2021Updated 5 years ago
- π° Managing command snippets for hackers/bug bounty hunters. with pet.β107May 6, 2023Updated 3 years ago
- Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, Parameteβ¦β52Jun 14, 2020Updated 5 years ago
- #JavascriptRecon #bugbountyβ21Aug 18, 2021Updated 4 years ago
- Command line tool for testing CRLF injection on a list of domains.β163Apr 14, 2024Updated 2 years ago
- Virtual machines for every use case on DigitalOcean β’ AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- This tool aims at accumulating javascript files from a given set of subdomains to discover hidden endpoints. It swims through JS files toβ¦β72Dec 28, 2022Updated 3 years ago
- 0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeoverβ57Dec 15, 2020Updated 5 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.β38Mar 7, 2021Updated 5 years ago
- Security tool to find potential vulnerable Server Side Request Forgery (SSRF) parameters.β361Feb 13, 2026Updated 2 months ago
- Another Subdomain ENumeration Toolβ14Oct 15, 2022Updated 3 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SSβ¦β175Nov 11, 2020Updated 5 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.β301Feb 12, 2023Updated 3 years ago
- Bug Bounty tool to automate the recon process.β12Oct 4, 2023Updated 2 years ago
- this tool take a list of subdomains and give you the ip for eachβ20Oct 9, 2020Updated 5 years ago
- Simple, predictable pricing with DigitalOcean hosting β’ AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- A simple program to query nmap xml files in the terminal.β27May 4, 2020Updated 6 years ago
- automated web assets enumeration & scanning [DEPRECATED]β288Mar 7, 2023Updated 3 years ago
- Python library and CLI for the Bug Bounty Recon APIβ230Jun 5, 2021Updated 4 years ago
- Generative web directory fuzzer,crawling and subdomain checker based on chatgptβ15May 15, 2024Updated last year
- leaking net-ntlm with webdavβ26Feb 23, 2021Updated 5 years ago
- Exploit for CVE-2021-27342 vulnerability (telnet authentication brute-force protection bypass)β14May 15, 2021Updated 4 years ago
- A Payload Injector for bugbounties written in goβ70Jul 18, 2020Updated 5 years ago