a recon tool that allows searching on URLs that are exposed via shortener services
β1,678Jan 23, 2025Updated last year
Alternatives and similar repositories for urlhunter
Users that are interested in urlhunter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Making Favicon.ico based Recon Great again !β1,277Aug 29, 2023Updated 2 years ago
- BBT - Bug Bounty Tools (examplesπ‘)β1,890Apr 5, 2024Updated 2 years ago
- OSINT tools and more but without API keyβ1,511Feb 15, 2026Updated 2 months ago
- Gotator is a tool to generate DNS wordlists through permutations.β515Jul 17, 2022Updated 3 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,419Sep 13, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findinβ¦β7,481Apr 23, 2026Updated last week
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.β301Feb 12, 2023Updated 3 years ago
- a javascript change monitoring tool for bugbountiesβ723Jul 31, 2024Updated last year
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ3,060Mar 7, 2026Updated last month
- The Swiss Army knife for automated Web Application Testingβ2,335May 8, 2024Updated last year
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.β2,512Aug 3, 2024Updated last year
- Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web applicationβ5,040Dec 21, 2024Updated last year
- Contextual Content Discovery Toolβ3,158Apr 29, 2024Updated 2 years ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.β562Mar 8, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Fetches javascript file from a list of URLS or subdomains.β840Jul 22, 2025Updated 9 months ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,915Mar 20, 2026Updated last month
- declutters url lists for crawling/pentestingβ1,551Feb 23, 2025Updated last year
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,372Sep 30, 2024Updated last year
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filteringβ¦β1,618Apr 27, 2026Updated last week
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,959Updated this week
- Automation for javascript recon in bug bounty.β1,083Sep 9, 2023Updated 2 years ago
- Quickly discover exposed hosts on the internet using multiple search engines.β2,907Updated this week
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.β1,867May 20, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient β’ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Heuristic Vulnerable Parameter Scannerβ603Jan 8, 2024Updated 2 years ago
- πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.β970Jan 10, 2025Updated last year
- Find endpoints on GitHub.β220Mar 28, 2023Updated 3 years ago
- Hidden parameters discovery suiteβ2,050Sep 8, 2024Updated last year
- A fast tool to scan CRLF vulnerability written in Goβ1,531Apr 13, 2026Updated 3 weeks ago
- A collection of hacks and one-off scriptsβ2,461Mar 13, 2025Updated last year
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β1,165Apr 3, 2026Updated last month
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β2,163Feb 23, 2026Updated 2 months ago
- A tool to check a bunch of URLs that contain reflecting params.β598Aug 4, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Eβ¦β8,601Mar 21, 2026Updated last month
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelβ¦β1,064Jan 3, 2025Updated last year
- automated web assets enumeration & scanning [DEPRECATED]β288Mar 7, 2023Updated 3 years ago
- gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Gβ¦β2,266Mar 26, 2026Updated last month
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,042Aug 23, 2025Updated 8 months ago
- Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.β6,197Aug 14, 2024Updated last year
- Rust-based high performance domain permutation generator.β299Dec 2, 2023Updated 2 years ago