who0xac / SubHunterX
**SubHunterX** is an automated tool for subdomain enumeration, vulnerability scanning, and exploitation. It discovers subdomains, detects live hosts, fuzzes directories, scans ports, identifies vulnerabilities, and automates exploitation. Ideal for penetration testers and bug bounty hunters. Comprehensive recon in one script.
☆20Updated last month
Alternatives and similar repositories for SubHunterX
Users that are interested in SubHunterX are comparing it to the libraries listed below
Sorting:
- AI/LLM local model integration for analysis of reconftw results☆47Updated 2 weeks ago
- Create your own recon & vulnerability scanner with Trickest and GitHub☆49Updated last year
- A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting t…☆47Updated 7 months ago
- ai-based domain name generation☆91Updated 3 months ago
- CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.☆45Updated 6 months ago
- ☆68Updated last year
- convert case style of words☆38Updated last year
- 🤖 LLM-powered agent for automated Google Dorking in bug hunting & pentesting.☆32Updated last month
- A powerful command-line tool for Google dorking, enabling users to uncover hidden information and vulnerabilities with advanced search qu…☆19Updated last month
- A python3 script searching for secret on swaggerhub☆65Updated 3 years ago
- Calculate favicon hash for SHODAN☆82Updated 7 months ago
- Process URLs and remove duplicate query parameters.☆28Updated last year
- An advanced JWT extraction & decoding tool for bug bounty hunters! 🏴☠️☆41Updated last month
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆54Updated 6 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆90Updated 9 months ago
- ☆34Updated 5 months ago
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆56Updated 3 months ago
- Passive Web Vulnerability Detection Tool☆33Updated last week
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆35Updated 2 months ago
- Enumerate old versions of robots.txt paths using Wayback Machine for content discovery☆47Updated last year
- ☆106Updated last year
- a simple discovery script that uses popular tools like subfinder, amass, puredns, alterx, massdns and others☆77Updated last year
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆67Updated 2 months ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 6 months ago
- A Go-based utility that processes input through multiple AI models concurrently (OpenAI, Claude, and Gemini) and provides a summarized co…☆51Updated 3 weeks ago
- A simple plugin to export JS files from one or multiple targets☆42Updated last year
- An extension for Burp's Web Vulnerability Scanner that can detect API discovery metadata and extract data useful during recon.☆16Updated 7 months ago
- Dump paths & pages from Next.js Manifest☆14Updated last year
- Chrome extension tool for OSINT & Recon☆53Updated last year
- A command-line utility for performing reverse DNS lookups☆70Updated last year