Alternatives and similar repositories for research

Users that are interested in research are comparing it to the libraries listed below

• random-robbie / AWS-Scanner
  Scans a list of websites for Cloudfront or S3 Buckets
  ☆104Updated 3 years ago
• sawzeeyy / Sanitiz3r
  A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status
  ☆89Updated 4 years ago
• glem0 / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆114Updated 6 years ago
• EdOverflow / smith
  Simple wrapper for meg that sieves through meg's output for you.
  ☆60Updated 5 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆76Updated 5 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 5 years ago
• samhaxr / TakeOver-v1
  Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…
  ☆101Updated 2 years ago
• appsecco / spaces-finder
  A tool to hunt for publicly accessible DigitalOcean Spaces
  ☆158Updated 5 years ago
• rojan-rijal / Pyrate
  Practice Web App written in python with some vulnerabilities.
  ☆34Updated 4 years ago
• koto / gitpillage
  Pillage a git repo found in an accessible web root
  ☆61Updated 14 years ago
• lorenzog / dns-parallel-prober
  PoC for an adaptive parallelised DNS prober
  ☆108Updated 2 years ago
• mdhama / lazyshot
  The simplest way to take an automated screenshot of given URLs. Easy installation! Edit
  ☆48Updated 7 years ago
• swarley7 / gograbber
  A horizontal and vertical web content enumerator
  ☆52Updated 7 years ago
• smiegles / mass3
  ☆128Updated 5 years ago
• joesmithjaffa / jenkins-shell
  Automating Jenkins Hacking using Shodan API
  ☆94Updated 7 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆150Updated 6 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 6 years ago
• maK- / scanomaly-2years
  This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping
  ☆48Updated 5 years ago
• righettod / virtualhost-payload-generator
  BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…
  ☆60Updated 7 years ago
• MrTaherAmine / pentest-management
  Simple webinterface combining different recon tools.
  ☆12Updated 7 years ago
• random-robbie / metadata-one-liners
  retrive metadata endpoint data with these one liners.
  ☆39Updated 5 years ago
• immunIT / XIP
  XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF,…
  ☆76Updated 6 years ago
• plenumlab / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆39Updated 6 years ago
• SpiderLabs / burplay
  Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…
  ☆83Updated 7 years ago
• ptonewreckin / BlindRef
  BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework
  ☆26Updated 8 years ago
• SimplySecurity / simplydomain
  Subdomain brute force focused on speed and data serialization
  ☆75Updated 2 years ago
• nccgroup / clickjacking-poc
  Clickjacking PoC Generator
  ☆35Updated 4 years ago
• Hack-Hut / CrabStick
  Automatic remote/local file inclusion vulnerability analysis and exploit tool
  ☆60Updated 6 years ago
• JR0ch17 / S3Cruze
  All-in-one AWS S3 bucket tool for pentesters.
  ☆74Updated 6 years ago
• PinkP4nther / aws-testing-notes
  Notes as I learn basic AWS penetration testing
  ☆67Updated 6 years ago