xcapri / subdosec
Subdosec is a fast, accurate subdomain takeover scanner with no false positives. It also offers a database of sites vulnerable to subdomain takeover (public results), along with detailed metadata like IP, CNAME, TITLE, and STATUS CODE for reconnaissance to identify potential new vulnerabilities.
☆33Updated 2 months ago
Alternatives and similar repositories for subdosec:
Users that are interested in subdosec are comparing it to the libraries listed below
- Detect Program Bug Bounty☆38Updated 2 months ago
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆90Updated 7 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆87Updated 7 months ago
- ☆59Updated last year
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆76Updated 2 months ago
- ☆34Updated 4 months ago
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆52Updated 2 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆71Updated 2 months ago
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆27Updated 8 months ago
- Collection of templates from various resources☆34Updated 2 months ago
- A really fast http prober.☆39Updated last year
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆39Updated 5 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆36Updated 8 months ago
- Grep subdomains from web pages.☆42Updated last month
- ☆17Updated 9 months ago
- subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains or a single doma…☆43Updated 3 months ago
- Passive Web Vulnerability Detection Tool☆31Updated 2 months ago
- ☆13Updated 9 months ago
- A passive way to find backups/ sensitive information.☆72Updated 2 months ago
- This Python script automates the process of identifying vulnerabilities in Firebase configurations extracted from APK files.☆29Updated 2 weeks ago
- ☆49Updated 10 months ago
- Repo for hosting rayder workflows☆58Updated last year
- Find subdomains on GitLab.☆95Updated 11 months ago
- A Lightning-Fast DNS Resolver written in Rust 🦀☆67Updated 4 months ago
- ai-based domain name generation☆74Updated last month
- Process URLs and remove duplicate query parameters.☆28Updated last year
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆21Updated 3 weeks ago
- Bypass Reset Password Code Lead to Account Takeover☆23Updated 6 months ago
- This repository updates latest Bug Bounty medium writeups every 10 minutes, https://readmedium.com/Medium_URL, https://archive.ph/Medium_…☆58Updated this week
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 4 months ago