a recon tool that allows searching on URLs that are exposed via shortener services
β1,679Jan 23, 2025Updated last year
Alternatives and similar repositories for urlhunter
Users that are interested in urlhunter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Making Favicon.ico based Recon Great again !β1,270Aug 29, 2023Updated 2 years ago
- BBT - Bug Bounty Tools (examplesπ‘)β1,885Apr 5, 2024Updated 2 years ago
- OSINT tools and more but without API keyβ1,504Feb 15, 2026Updated last month
- Gotator is a tool to generate DNS wordlists through permutations.β511Jul 17, 2022Updated 3 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,417Sep 13, 2024Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI β’ AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,416Mar 25, 2026Updated 2 weeks ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.β301Feb 12, 2023Updated 3 years ago
- a javascript change monitoring tool for bugbountiesβ722Jul 31, 2024Updated last year
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ3,048Mar 7, 2026Updated last month
- The Swiss Army knife for automated Web Application Testingβ2,328May 8, 2024Updated last year
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.β2,505Aug 3, 2024Updated last year
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ5,031Dec 21, 2024Updated last year
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.β563Mar 8, 2025Updated last year
- Fetches javascript file from a list of URLS or subdomains.β839Jul 22, 2025Updated 8 months ago
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,883Mar 20, 2026Updated 3 weeks ago
- Contextual Content Discovery Toolβ3,139Apr 29, 2024Updated last year
- declutters url lists for crawling/pentestingβ1,544Feb 23, 2025Updated last year
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,366Sep 30, 2024Updated last year
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filteringβ¦β1,612Apr 6, 2026Updated last week
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,929Updated this week
- Automation for javascript recon in bug bounty.β1,079Sep 9, 2023Updated 2 years ago
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.β1,856May 20, 2024Updated last year
- Quickly discover exposed hosts on the internet using multiple search engines.β2,895Mar 25, 2026Updated 2 weeks ago
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Heuristic Vulnerable Parameter Scannerβ603Jan 8, 2024Updated 2 years ago
- πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.β969Jan 10, 2025Updated last year
- Find endpoints on GitHub.β219Mar 28, 2023Updated 3 years ago
- A collection of hacks and one-off scriptsβ2,453Mar 13, 2025Updated last year
- Hidden parameters discovery suiteβ2,044Sep 8, 2024Updated last year
- A fast tool to scan CRLF vulnerability written in Goβ1,529Updated this week
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β1,095Apr 3, 2026Updated last week
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,154Feb 23, 2026Updated last month
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Eβ¦β8,551Mar 21, 2026Updated 3 weeks ago
- Serverless GPU API endpoints on Runpod - Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- A tool to check a bunch of URLs that contain reflecting params.β598Aug 4, 2024Updated last year
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelβ¦β1,058Jan 3, 2025Updated last year
- automated web assets enumeration & scanning [DEPRECATED]β288Mar 7, 2023Updated 3 years ago
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Gβ¦β2,259Mar 26, 2026Updated 2 weeks ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,037Aug 23, 2025Updated 7 months ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,153Aug 14, 2024Updated last year
- Rust-based high performance domain permutation generator.β299Dec 2, 2023Updated 2 years ago