Alternatives and similar repositories for subgen

Users that are interested in subgen are comparing it to the libraries listed below

• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆66Updated 4 years ago
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆83Updated 3 years ago
• Healdb / Elevate
  Horizontal Domain Discovery
  ☆76Updated 2 years ago
• Static-Flow / ParameterMiner
  Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, Paramete…
  ☆48Updated 5 years ago
• vavkamil / XSSwagger
  A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks
  ☆60Updated 6 years ago
• sw33tLie / bcscope
  Get the scope of your bugcrowd programs
  ☆67Updated 4 years ago
• Cgboal / exclude-cdn
  Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin
  ☆45Updated 2 years ago
• dwisiswant0 / unew
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆123Updated 3 years ago
• In3tinct / Taken
  Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.
  ☆93Updated 2 months ago
• dariusztytko / vhosts-sieve
  Searching for virtual hosts among non-resolvable domains
  ☆88Updated 5 years ago
• Rhynorater / reports
  ☆60Updated last year
• thelikes / gwdomains
  sub domain wild card filtering tool
  ☆41Updated 5 years ago
• 1ndianl33t / 1ndiList
  Recon Custom WordList Ganerator
  ☆58Updated 5 years ago
• ethicalhackingplayground / linkJS
  ☆57Updated 5 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆86Updated 2 years ago
• emadshanab / Scan-Apple-ASN-for-vulnerabilities-and-leave-no-port
  ☆44Updated 4 years ago
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆159Updated last year
• samirettali / dumpcn
  Get all the CNs from a list of domains
  ☆46Updated 4 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆52Updated 4 years ago
• assetnote / h2csmuggler
  ☆75Updated last year
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆86Updated 4 years ago
• ethicalhackingplayground / wordlistgen
  Generates target specific word lists for Fuzzing with fuff
  ☆111Updated 5 years ago
• Sambal0x / Recon-tools
  Some of my bug bounty tools
  ☆52Updated 5 years ago
• Tanmay-N / CORS-Scanner
  ☆31Updated 4 years ago
• tomnomnom / burl
  A Broken-URL Checker
  ☆81Updated 7 years ago
• dwisiswant0 / bounty-targets-alert
  It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.
  ☆59Updated 3 years ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Updated 4 years ago
• PatrikFehrenbach / amass-tools
  ☆108Updated 4 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆131Updated 4 years ago
• dwisiswant0 / wadl-dumper
  Dump all available paths and/or endpoints on WADL file.
  ☆95Updated 3 weeks ago