Subdosec is a fast, accurate subdomain takeover scanner with no false positives. It also offers a database of sites vulnerable to subdomain takeover (public results), along with detailed metadata like IP, CNAME, TITLE, and STATUS CODE for reconnaissance to identify potential new vulnerabilities.
☆60Feb 24, 2026Updated 3 weeks ago
Alternatives and similar repositories for subdosec
Users that are interested in subdosec are comparing it to the libraries listed below
Sorting:
- Detect Program Bug Bounty☆42Jun 12, 2025Updated 9 months ago
- Blind XSS SVG☆10Mar 27, 2023Updated 2 years ago
- AIRecon is an autonomous cybersecurity agent that combines a self-hosted Large Language Model (Ollama) with a Kali Linux Docker sandbox a…☆69Updated this week
- Looks for parameters in urls☆34Oct 14, 2024Updated last year
- COLI (Command Orchestration & Logic Interface) – A visual orchestration layer for EWE, built for bug bounty automation. Create and run CL…☆35Oct 15, 2025Updated 5 months ago
- Get list of subsidiaries for a selected company☆32Dec 21, 2024Updated last year
- DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.☆41Apr 18, 2024Updated last year
- ☆48Dec 31, 2024Updated last year
- ai-based domain name generation☆128Feb 3, 2025Updated last year
- A command-line utility for auditing DNS configuration using Zonemaster API☆32Aug 21, 2023Updated 2 years ago
- FileFetcher is a Python tool that extracts and filters URLs from archived Wayback Machine data based on file types like .pdf, .zip, .sql,…☆19Jan 16, 2025Updated last year
- Template Nuclei SSTI☆34Nov 18, 2025Updated 4 months ago
- A powerful subdomain enumeration tool that aggregates data from multiple sources to create comprehensive lists of root subdomains.☆47Dec 19, 2025Updated 3 months ago
- Pler - Domain Probe and Cloudflare Filter Tool. Pler is a simple yet powerful Python script to check whether a domain is using Cloudflare…☆22Aug 12, 2025Updated 7 months ago
- All-in Fuzzer. Burp suite extension for auto fuzzing params, headers, body☆36Dec 13, 2025Updated 3 months ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Jan 11, 2025Updated last year
- DursVuln - Nmap Scripting Engine (NSE)☆21Jul 16, 2025Updated 8 months ago
- Tool for fetching all the available waybackmachine snapshot urls☆24Oct 8, 2024Updated last year
- Shodan-Grabber is a Node.js tool for scraping IP addresses and other information from Shodan's web interface. It utilizes Puppeteer for w…☆17Nov 13, 2024Updated last year
- Belajar NodeJS + Redis : Cache☆16Jun 27, 2025Updated 8 months ago
- ☆27May 21, 2025Updated 10 months ago
- Quaithe empowers you to execute multiple commands in parallel for blazing-fast performance.☆28Aug 20, 2023Updated 2 years ago
- bounty collection☆41Sep 1, 2024Updated last year
- Reflected XSS Payload List for Vue.js (2 & 3)☆15Jan 12, 2023Updated 3 years ago
- A passive way to find backups/ sensitive information.☆89Jul 10, 2025Updated 8 months ago
- ☆13Oct 24, 2024Updated last year
- A python script to automatically dump files and source code of a Symfony server in debug mode.☆13Feb 11, 2025Updated last year
- Provides public bug bounty programs in-scope data that offer rewards and monitors public bug bounty programs assets.☆99Updated this week
- This repository contains the best fuzzing wordlist files☆34Dec 2, 2024Updated last year
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆11Sep 22, 2023Updated 2 years ago
- ☆50Aug 2, 2025Updated 7 months ago
- Python Script to Print the name of the companies that are acquired by a Target Company and the Time of Acquisition.☆26Dec 5, 2021Updated 4 years ago
- xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…☆36Nov 3, 2025Updated 4 months ago
- Sensitive Discoverer, a Burp extension to discovers sensitive information inside HTTP messages.☆50Jan 26, 2026Updated last month
- Burp Suite extension that enhances Burp Active Scan by adding template engine specific SSTI payloads.☆24Feb 20, 2024Updated 2 years ago
- Quickly find all identities someone has used on their Github commits☆16Jul 28, 2024Updated last year
- Saves pages to Wayback machine☆12Dec 2, 2024Updated last year
- BBT - Bug Bounty Tools☆18Apr 5, 2024Updated last year
- This repository contains a proof-of-concept exploit script for CVE-2025-32432, a pre-authentication Remote Code Execution (RCE) vulnerabi…☆24Apr 27, 2025Updated 10 months ago