Alternatives and similar repositories for bruteforce-lists:

Users that are interested in bruteforce-lists are comparing it to the libraries listed below

• robotshell / magicRecon
  MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilitie…
  ☆921Updated 6 months ago
• R0X4R / Garud
  An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…
  ☆782Updated last year
• 0xapt / awesome-bbht
  A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus bu…
  ☆561Updated 3 years ago
• pwn0sec / PwnXSS
  PwnXSS: Vulnerability (XSS) scanner exploit
  ☆762Updated 2 years ago
• m4ll0k / BBTz
  BBT - Bug Bounty Tools (examples💡)
  ☆1,743Updated 10 months ago
• arkadiyt / bounty-targets
  This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data…
  ☆646Updated 2 weeks ago
• m4ll0k / SecretFinder
  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
  ☆2,089Updated 8 months ago
• nsonaniya2010 / SubDomainizer
  A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
  ☆1,768Updated 9 months ago
• dwisiswant0 / go-dork
  The fastest dork scanner written in Go.
  ☆1,173Updated last year
• dwisiswant0 / findom-xss
  A fast DOM based XSS vulnerability scanner with simplicity.
  ☆784Updated 2 years ago
• r0075h3ll / Oralyzer
  Open Redirection Analyzer
  ☆763Updated last year
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆728Updated 7 months ago
• MindPatch / scant3r
  ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )
  ☆686Updated last year
• ksharinarayanan / SSRFire
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆953Updated 3 years ago
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆935Updated last year
• capture0x / XSS-LOADER
  Xss Payload Generator ~ Xss Scanner ~ Xss Dork Finder
  ☆571Updated last year
• gwen001 / github-subdomains
  Find subdomains on GitHub.
  ☆695Updated last year
• devanshbatham / FavFreak
  Making Favicon.ico based Recon Great again !
  ☆1,155Updated last year
• mzfr / liffy
  Local file inclusion exploitation tool
  ☆834Updated last year
• s0md3v / Parth
  Heuristic Vulnerable Parameter Scanner
  ☆580Updated last year
• hakluke / weaponised-XSS-payloads
  XSS payloads designed to turn alert(1) into P1
  ☆1,349Updated last year
• tomnomnom / unfurl
  Pull out bits of URLs provided on stdin
  ☆1,127Updated last year
• j3ssie / metabigor
  OSINT tools and more but without API key
  ☆1,304Updated 10 months ago
• ghsec / webHunt
  Web App bug hunting
  ☆557Updated 8 months ago
• dwisiswant0 / crlfuzz
  A fast tool to scan CRLF vulnerability written in Go
  ☆1,382Updated this week
• m4ll0k / Atlas
  Quick SQLMap Tamper Suggester
  ☆1,361Updated 2 years ago
• 1ndianl33t / Gf-Patterns
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,259Updated 5 months ago
• s0md3v / uro
  declutters url lists for crawling/pentesting
  ☆1,268Updated last month
• lutfumertceylan / top25-parameter
  For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
  ☆1,730Updated 8 months ago
• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,178Updated 2 weeks ago