a recon tool that allows searching on URLs that are exposed via shortener services
β1,662Jan 23, 2025Updated last year
Alternatives and similar repositories for urlhunter
Users that are interested in urlhunter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Making Favicon.ico based Recon Great again !β1,269Aug 29, 2023Updated 2 years ago
- BBT - Bug Bounty Tools (examplesπ‘)β1,885Apr 5, 2024Updated last year
- OSINT tools and more but without API keyβ1,491Feb 15, 2026Updated last month
- Gotator is a tool to generate DNS wordlists through permutations.β508Jul 17, 2022Updated 3 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,409Sep 13, 2024Updated last year
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,352Mar 13, 2026Updated last week
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.β303Feb 12, 2023Updated 3 years ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ3,025Mar 7, 2026Updated 2 weeks ago
- a javascript change monitoring tool for bugbountiesβ713Jul 31, 2024Updated last year
- The Swiss Army knife for automated Web Application Testingβ2,321May 8, 2024Updated last year
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.β2,496Aug 3, 2024Updated last year
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ5,007Dec 21, 2024Updated last year
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.β562Mar 8, 2025Updated last year
- Fetches javascript file from a list of URLS or subdomains.β839Jul 22, 2025Updated 8 months ago
- Contextual Content Discovery Toolβ3,121Apr 29, 2024Updated last year
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,853Jan 1, 2025Updated last year
- declutters url lists for crawling/pentestingβ1,538Feb 23, 2025Updated last year
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filteringβ¦β1,599Updated this week
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,884Updated this week
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,363Sep 30, 2024Updated last year
- Automation for javascript recon in bug bounty.β1,069Sep 9, 2023Updated 2 years ago
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.β1,852May 20, 2024Updated last year
- Quickly discover exposed hosts on the internet using multiple search engines.β2,843Feb 25, 2026Updated 3 weeks ago
- Heuristic Vulnerable Parameter Scannerβ601Jan 8, 2024Updated 2 years ago
- Find endpoints on GitHub.β215Mar 28, 2023Updated 2 years ago
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β1,028Feb 22, 2026Updated last month
- A fast tool to scan CRLF vulnerability written in Goβ1,522Feb 23, 2026Updated last month
- Hidden parameters discovery suiteβ2,033Sep 8, 2024Updated last year
- A collection of hacks and one-off scriptsβ2,425Mar 13, 2025Updated last year
- πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.β968Jan 10, 2025Updated last year
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,140Feb 23, 2026Updated last month
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Eβ¦β8,522Updated this week
- A tool to check a bunch of URLs that contain reflecting params.β597Aug 4, 2024Updated last year
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelβ¦β1,052Jan 3, 2025Updated last year
- automated web assets enumeration & scanning [DEPRECATED]β288Mar 7, 2023Updated 3 years ago
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Gβ¦β2,252Jun 10, 2025Updated 9 months ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,039Aug 23, 2025Updated 7 months ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,113Aug 14, 2024Updated last year
- Rust-based high performance domain permutation generator.β299Dec 2, 2023Updated 2 years ago