Alternatives and similar repositories for h2rs

Users that are interested in h2rs are comparing it to the libraries listed below

• w9w / bugbounty_changelogs
  ☆57Updated 5 months ago
• defparam / haptyc
  ☆94Updated 3 years ago
• trickest / log4j
  Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
  ☆111Updated 3 years ago
• clarkvoss / AEM-List
  ☆95Updated 3 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• panch0r3d / nuclei-templates
  ☆89Updated 3 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆72Updated 3 years ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆66Updated 3 years ago
• 0xAwali / Virtual-Host
  Modified Nuclei Templates Version to FUZZ Host Header
  ☆50Updated 3 years ago
• imrannissar / Content-discovery
  ☆96Updated 5 years ago
• elfarsaouiomar / monitor-new-subdomain
  MNS is a security and reconnaissance tool for monitoring new subdomains
  ☆69Updated 3 weeks ago
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆114Updated 2 years ago
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆90Updated 3 years ago
• emadshanab / Scan-Apple-ASN-for-vulnerabilities-and-leave-no-port
  ☆44Updated 3 years ago
• j3ssie / goverview
  goverview - Get an overview of the list of URLs
  ☆143Updated 2 years ago
• nikitastupin / orgs-data
  Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
  ☆61Updated last week
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Updated 4 years ago
• dwisiswant0 / wadl-dumper
  Dump all available paths and/or endpoints on WADL file.
  ☆93Updated last month
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆121Updated 4 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆59Updated 3 years ago
• iustin24 / SSRF
  ☆34Updated 4 years ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆61Updated last month
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆158Updated last year
• assetnote / h2csmuggler
  ☆74Updated last year
• tehryanx / sprawl
  Expand urls into one url for each path depth
  ☆33Updated 4 years ago
• Raywando / 4xxbypass
  4xxbypass
  ☆67Updated 4 years ago
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆36Updated 2 years ago
• esetal / nuclei-bb-templates
  nuclei-bb-templates
  ☆51Updated 3 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆85Updated 4 years ago
• hakluke / hakfindinternaldomains
  Feed it a list of subdomains, it will resolve them and tell you which ones are internal
  ☆92Updated 3 years ago