A python tool to check subdomain takeover vulnerability
☆342Jan 6, 2023Updated 3 years ago
Alternatives and similar repositories for sub404
Users that are interested in sub404 are comparing it to the libraries listed below
Sorting:
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆802Jul 4, 2023Updated 2 years ago
- Automation for javascript recon in bug bounty.☆1,069Sep 9, 2023Updated 2 years ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆970Dec 8, 2021Updated 4 years ago
- Open Redirection Analyzer☆813Mar 5, 2023Updated 3 years ago
- 🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).☆298Oct 5, 2024Updated last year
- ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )☆686Mar 1, 2026Updated last week
- Automation Recon tool which works with Large & Medium scopes. It performs a lot of tasks and gets back all the results in separated files…☆684Jul 15, 2024Updated last year
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆350Jun 17, 2023Updated 2 years ago
- A fast DOM based XSS vulnerability scanner with simplicity.☆856Sep 30, 2022Updated 3 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆296Sep 22, 2024Updated last year
- A fast tool to scan CRLF vulnerability written in Go☆1,520Feb 23, 2026Updated 2 weeks ago
- Automating XSS using Bash☆362Jan 27, 2026Updated last month
- Heuristic Vulnerable Parameter Scanner☆600Jan 8, 2024Updated 2 years ago
- Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for m…☆705Oct 29, 2021Updated 4 years ago
- Subdomain and target enumeration tool built for offensive security testing☆936Jun 19, 2024Updated last year
- HTTP Request Smuggling Detection Tool☆535Dec 21, 2023Updated 2 years ago
- SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities☆185Mar 2, 2021Updated 5 years ago
- Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.☆134Jul 11, 2021Updated 4 years ago
- ☆30Jun 6, 2024Updated last year
- Customisable and automated HTTP header injection☆269Jun 27, 2024Updated last year
- Finding XSS during recon☆273Sep 13, 2022Updated 3 years ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆3,012Jun 24, 2024Updated last year
- Making Favicon.ico based Recon Great again !☆1,268Aug 29, 2023Updated 2 years ago
- Nuubi Tools (Information-ghatering|Scanner|Recon.)☆87Jun 27, 2020Updated 5 years ago
- XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.☆317Jun 1, 2022Updated 3 years ago
- Random Tools for Bug Bounty☆151Oct 15, 2022Updated 3 years ago
- Subdomain takeover vulnerability checker☆1,525Sep 10, 2024Updated last year
- HostHunter a recon tool for discovering hostnames using OSINT techniques.☆1,156Mar 30, 2023Updated 2 years ago
- Tool to find stored robots.txt files from the past☆19Jun 4, 2023Updated 2 years ago
- NodeJS & WebSockets lab. University of Alberta CMPUT 404☆23Nov 28, 2023Updated 2 years ago
- Second-order subdomain takeover scanner☆404Aug 28, 2025Updated 6 months ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆453Jan 9, 2024Updated 2 years ago
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙☆1,819Jun 9, 2024Updated last year
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.☆1,851May 20, 2024Updated last year
- BBT - Bug Bounty Tools (examples💡)☆1,880Apr 5, 2024Updated last year
- Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration☆1,196Jan 9, 2026Updated 2 months ago
- CMPUT404-assignment-ajax☆17Mar 4, 2014Updated 12 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…☆1,153Jan 21, 2026Updated last month
- MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilitie…☆1,033Jul 23, 2024Updated last year