Alternatives and similar repositories for cth_wordlists

Users that are interested in cth_wordlists are comparing it to the libraries listed below

• Drayko / Bot-Bounty
  Python Script for Telegram Bot is specially built for pentest & bug bounty. It's like a telegram shell.
  ☆55Updated 6 months ago
• R0X4R / Agnee
  Find sensitive information using dorks from different search-engines.
  ☆90Updated 11 months ago
• sdnv0x4d / rasoff
  1C RAS Offensive Security Tool
  ☆27Updated 2 years ago
• SeifElsallamy / gip
  Google IP Search Engine
  ☆151Updated 3 years ago
• kleiton0x00 / CORS-one-liner
  A one liner Bash command which finds CORS in every possible endpoint.
  ☆149Updated 4 years ago
• six2dez / degoogle_hunter
  Simple fork from degoogle original project with bug hunting purposes
  ☆89Updated 3 years ago
• sorokinpf / sqli_blinder
  Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.
  ☆29Updated 3 years ago
• nullenc0de / reverse-apk
  ☆54Updated 11 months ago
• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆56Updated 3 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• 0xAwali / WebSocketChecker
  Burp suite extension to find sensitive information by checking incoming text OR binary websocket messages
  ☆53Updated 8 months ago
• Alaa-abdulridha / SerpScan
  Serpscan is a powerfull php script designed to allow you to leverage the power of dorking straight from the comfort of your command line.
  ☆67Updated 4 years ago
• moeinfatehi / Backup-Finder
  A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…
  ☆161Updated last year
• sharsi1 / sublazerwlst
  Bundle of wordlists for brute-forcing subdomains (World + RUSSIA based).
  ☆66Updated 7 years ago
• Proviesec / github-dorks
  Useful Github Dorks for BugBounty -
  ☆68Updated 2 years ago
• R0X4R / Parshu
  Filter URLs to save your time.
  ☆60Updated 3 years ago
• w0ltage / subchase
  Chase subdomains by parsing the results of Google and Yandex search results
  ☆15Updated 2 years ago
• HackCommander / PHP-info-cookie-stealer
  Payload generator to exfiltrate user cookies through the PHP info page bypassing the HttpOnly flag during XSS exploitation.
  ☆20Updated last year
• ambalabanov / cswsh-scanner
  Scanner for Cross-Site WebSocket Hijacking
  ☆42Updated 5 years ago
• carlospolop / Leakos
  ☆74Updated last year
• gwen001 / favicon-hashtrick
  Python script implementing the favicon hash trick to find subdomains.
  ☆37Updated 2 years ago
• shiblisec / Kyubi
  A tool to discover and exploit Nginx alias traversal misconfiguration, the tool can bruteforce the URL path recursively to find out hidde…
  ☆124Updated last year
• d34db33f-1007 / fuzz300
  Robust and blazing fast open-redirect vulnerability scanner with ability of recursevely crawling all of web-forms, entry points, or links…
  ☆42Updated 2 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆86Updated 2 years ago
• hakluke / dnstrace
  DNS resolution tracing tool
  ☆34Updated 4 years ago
• luisfontes19 / CSRFER
  Tool to generate csrf payloads based on vulnerable requests
  ☆64Updated 5 years ago
• U53RW4R3 / nuclei-fuzzer-templates
  My personal collection of nuclei templates made for fuzzing.
  ☆28Updated last year
• enenumxela / subdomains.sh
  A wrapper around tools used for subdomain enumeration, to automate the workflow, on a given domain, written in bash.
  ☆80Updated 3 years ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆59Updated 2 years ago
• gitnepal / isup
  Find alive host from dumped subdomains, huge domain list , alive subdomains
  ☆27Updated 4 years ago