r3curs1v3-pr0xy / sub404Links
A python tool to check subdomain takeover vulnerability
☆334Updated 2 years ago
Alternatives and similar repositories for sub404
Users that are interested in sub404 are comparing it to the libraries listed below
Sorting:
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆454Updated last year
- HTTP Request Smuggling Detection Tool☆520Updated last year
- Nuclei templates written by geeknik. Claude is my co-pilot. 🤖☆274Updated 3 weeks ago
- Heuristic Vulnerable Parameter Scanner☆595Updated last year
- automated web assets enumeration & scanning [DEPRECATED]☆289Updated 2 years ago
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆341Updated 2 years ago
- ☆297Updated 3 years ago
- Full Nuclei automation script with logic explanation.☆245Updated 3 years ago
- Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.☆329Updated 3 weeks ago
- 🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).☆299Updated 10 months ago
- A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.☆302Updated last year
- Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools☆278Updated last year
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆296Updated 11 months ago
- Automating XSS using Bash☆358Updated last year
- Tool to help exploit XXE vulnerabilities☆565Updated 2 years ago
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆331Updated 3 months ago
- Recon Automation for hackers by hackers☆254Updated 5 years ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆511Updated 3 years ago
- Customisable and automated HTTP header injection☆261Updated last year
- Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.☆260Updated 2 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆589Updated last year
- Gotator is a tool to generate DNS wordlists through permutations.☆487Updated 3 years ago
- Web App bug hunting☆570Updated 5 months ago
- Default signature for Jaeles Scanner☆324Updated 3 years ago
- Get related domains / subdomains by looking at Google Analytics IDs☆250Updated 3 years ago
- Hidden parameters discovery suite☆225Updated 2 years ago
- Now, the Host is Mine! - Super Fast Sub-domain Takeover Detection!☆363Updated 2 years ago
- ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )☆689Updated 3 weeks ago
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆275Updated 7 months ago
- A blind XSS detection and XSS data capture framework☆172Updated 3 weeks ago