Alternatives and similar repositories for Gau-Expose

Users that are interested in Gau-Expose are comparing it to the libraries listed below

• six2dez / resolvers_reconftw
  Resolvers updated daily for reconftw
  ☆47Updated 2 years ago
• 0xRTH / IISRecon
  IIS shortname scanner + bruteforce
  ☆52Updated last year
• akshaysharma016 / aem-detector
  ☆21Updated 2 years ago
• emadshanab / femida
  Automated blind-xss search for Burp Suite
  ☆23Updated 3 years ago
• emadshanab / DIR-WORDLISTS
  Some wordlists collected form github to all bug bounty hunters.
  ☆31Updated 3 years ago
• k4k4r07 / CertSubDumb
  Basic Bash Script to scrape all subdomains from crtsh in a single run
  ☆19Updated 3 years ago
• NitinYadav00 / gf-patterns
  Some of the gf patterns which i use
  ☆43Updated 3 years ago
• projectmonke / shortnameguesser
  A tool to guess the rest of the shortnames provided by vulnerable IIS instances.
  ☆41Updated last year
• Lu3ky13 / Authorization-Nuclei-Templates
  Authorization-Nuclei-Templates
  ☆39Updated 9 months ago
• gwen001 / bxss
  Alternative to XSS Hunter for blind XSS.
  ☆51Updated 2 years ago
• Dheerajmadhukar / subzzZ
  SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.
  ☆38Updated 4 years ago
• Ravaan21 / Chandrahasa
  A solid recon tool I use personally.
  ☆30Updated 2 years ago
• 0xElkot / My-Nuclei-Templates
  ☆33Updated 2 years ago
• PatrikFehrenbach / vilicus
  vīlicus is a bug bounty api dashboard
  ☆41Updated last year
• BitTheByte / BitMapper
  Burp-suite Extension For finding .map files
  ☆49Updated last year
• Ravirajrao / HackerOne-Reports
  Cool HackerOne Reports
  ☆22Updated 2 years ago
• emadshanab / Blind-XSS-burp-match-and-replace
  ☆28Updated last year
• kursadalsan / fastbugbounty
  Fast Bug Bounty Script
  ☆37Updated 5 months ago
• tess-ss / writeups
  ☆28Updated 2 years ago
• ph4nt0m-py / login-panel-wordlist
  ☆32Updated 2 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆59Updated 3 years ago
• bugbountyhunters / Iris-JS
  #JavascriptRecon #bugbounty
  ☆21Updated 3 years ago
• clarkvoss / Nuclei-Templates
  ☆79Updated 2 years ago
• bhataasim1 / Nuclei-Templates
  Downlaod all the nuclei Templates created from many Bug Hunters
  ☆27Updated 2 years ago
• subzero987 / S3-Recon
  S3 Recon tips and tricks collected from different resources,Sorry if i missed to mention all resources owners
  ☆27Updated 3 years ago
• MR-pentestGuy / nuclei-templates
  My own Custom nuclei templates
  ☆24Updated 3 years ago
• clarkvoss / AEM-List
  ☆95Updated 3 years ago
• ElSicarius / Supp-truder
  Supertruder but better
  ☆32Updated 2 years ago
• bsysop / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆17Updated 4 years ago
• Virdoexhunter / Subenum_deep_subdomain_enumeration
  In this repo, I have created a subdomain enumeration function that grab subdomains in deep.
  ☆22Updated 2 years ago