r3curs1v3-pr0xy / sub404

Related projects ⓘ

Alternatives and complementary repositories for sub404

• bp0lr / gauplus
  ☆285Updated 2 years ago
• KathanP19 / Gxss
  A tool to check a bunch of URLs that contain reflecting params.
  ☆532Updated 3 months ago
• ameenmaali / urldedupe
  Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
  ☆337Updated 4 years ago
• pikpikcu / XRCross
  XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…
  ☆329Updated last year
• iamthefrogy / nerdbug
  Full Nuclei automation script with logic explanation.
  ☆236Updated 2 years ago
• theinfosecguy / QuickXSS
  Automating XSS using Bash
  ☆349Updated 7 months ago
• geeknik / the-nuclei-templates
  Nuclei templates written by us.
  ☆265Updated 3 years ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆472Updated 10 months ago
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆711Updated 4 months ago
• s0md3v / Parth
  Heuristic Vulnerable Parameter Scanner
  ☆570Updated 10 months ago
• ethicalhackingplayground / bxss
  ☆223Updated 4 months ago
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆453Updated 2 years ago
• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆289Updated last month
• kleiton0x00 / ppmap
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆494Updated 2 years ago
• BitTheByte / Monitorizer
  Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
  ☆265Updated 3 months ago
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆900Updated last year
• venom26 / recon
  information gathering
  ☆267Updated 7 months ago
• M4DM0e / DirDar
  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
  ☆445Updated 10 months ago
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆739Updated last year
• hakluke / hakcheckurl
  Takes a list of URLs and returns their HTTP response codes
  ☆390Updated last year
• mlcsec / headi
  Customisable and automated HTTP header injection
  ☆237Updated 4 months ago
• harsh-bothra / Bheem
  ☆366Updated 3 years ago
• ARPSyndicate / kenzer
  automated web assets enumeration & scanning [DEPRECATED]
  ☆285Updated last year
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆295Updated last year
• 0x240x23elu / JSScanner
  Js File Scanner
  ☆160Updated 2 years ago
• thevillagehacker / Bug-Hunting-Arsenal
  The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down her…
  ☆186Updated 2 weeks ago
• xm1k3 / cent
  Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…
  ☆876Updated 4 months ago
• Emoe / kxss
  This a adaption of tomnomnom's kxss tool with a different output format
  ☆422Updated last year
• hash3liZer / Subrake
  🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).
  ☆292Updated last month
• dwisiswant0 / gf-secrets
  Secret and/or credential patterns used for gf.
  ☆233Updated last year