xcapri / subdosec
Subdosec is a fast, accurate subdomain takeover scanner with no false positives. It also offers a database of sites vulnerable to subdomain takeover (public results), along with detailed metadata like IP, CNAME, TITLE, and STATUS CODE for reconnaissance to identify potential new vulnerabilities.
☆34Updated 2 weeks ago
Alternatives and similar repositories for subdosec
Users that are interested in subdosec are comparing it to the libraries listed below
Sorting:
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆81Updated 4 months ago
- Detect Program Bug Bounty☆41Updated 4 months ago
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆27Updated 9 months ago
- Bypass Reset Password Code Lead to Account Takeover☆25Updated 7 months ago
- ☆34Updated 5 months ago
- subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains or a single doma…☆47Updated 5 months ago
- Dive into a handpicked selection of tools, guides, and tips tailored for beginners in Bug Bounty and Penetration Testing. 🐛🛡️☆32Updated 9 months ago
- This Python script automates the process of identifying vulnerabilities in Firebase configurations extracted from APK files.☆43Updated last month
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆94Updated 9 months ago
- ☆13Updated 10 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆71Updated 3 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆90Updated 9 months ago
- ☆37Updated last month
- ☆64Updated last year
- Url scrapper or extractor from alienvault☆33Updated 2 months ago
- A passive way to find backups/ sensitive information.☆78Updated 2 weeks ago
- ☆60Updated last year
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆22Updated last week
- Mind map for certifcation, vulnerability finding and recon for bug bounty and professional works.☆19Updated last year
- Fast subdomains enumeration tool for penetration testers and bug bounty hunters☆29Updated 4 months ago
- Grep subdomains from web pages.☆42Updated 3 months ago
- A fast, minimalistic scanner for time-based SQL injection (SQLi) detection – built in Go.☆60Updated last week
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆31Updated last year
- A Powerful Recon Engine☆63Updated 5 months ago
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆56Updated 3 months ago
- anveshan is a completed script that helps to automate your recon process, It finds subdomains, urls, js files, parameters, screenshots, a…☆30Updated 6 months ago
- ☆65Updated 8 months ago
- JScripter is a Python script designed to scrape and save unique JavaScript files from a list of URLs or a single URL.☆25Updated 5 months ago
- Collection of templates from various resources☆35Updated 3 weeks ago
- ☆88Updated last month