Alternatives and similar repositories for xrecon

Users that are interested in xrecon are comparing it to the libraries listed below

• ShangRui-hash / bucket-takeover-lab
  子域名接管的几种变体靶场
  ☆23Updated last year
• Goqi / Ni
  Ni-nuclei二开
  ☆41Updated last year
• gh0stkey / FuckAnywhere
  FuckAnywhere - 这是一个BurpSuite Jython（Python）插件，用于在HTTP请求中随处插入你想要进行测试的代码。
  ☆51Updated 3 years ago
• code-scan / Goal
  Goal Go Red-Team 工具类
  ☆44Updated 10 months ago
• Ciyfly / sucker
  对任意http网站添加指定漏洞 目前实现部分漏洞的追加 支持本身http服务 支持反向代理追加
  ☆28Updated 3 years ago
• woodpecker-appstore / zip-tools
  zip slip
  ☆38Updated 2 years ago
• Sachinart / log4j-bypass-payloads
  ☆27Updated 3 years ago
• Rvn0xsy / red-tldr-db
  Red TL;DR Database is a set of text data that provides search for red-tldr. If you don’t know red-tldr yet, please read the documentation…
  ☆42Updated 3 years ago
• lishang520 / CVE-2022-24990
  CVE-2022-24990信息泄露+RCE 一条龙
  ☆39Updated 3 years ago
• emo-crab / ysoserial-rs
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆69Updated 2 years ago
• pyn3rd / CVE-2023-34040
  Spring-Kafka-Deserialization-Remote-Code-Execution
  ☆31Updated 2 years ago
• whgojp / DumpAll-Go
  一款信息泄漏利用工具，适用于.git/.svn/.DS_Store泄漏和目录列出(dumpall Golang重构版)
  ☆20Updated 7 months ago
• Henry4E36 / eyouRCE
  （CNVD-2021-26422）亿邮电子邮件系统 远程命令执行漏洞
  ☆12Updated 4 years ago
• zwjjustdoit / Xstream-1.4.17
  XSTREAM<=1.4.17漏洞复现（CVE-2021-39141、CVE-2021-39144、CVE-2021-39150）
  ☆62Updated 4 years ago
• xiecat / sylas
  根据多个不同地区进行聚合查询以获取更多 fofa 数据
  ☆28Updated 2 years ago
• orleven / Celestion
  Celestion 是一个无回显漏洞测试辅助平台，平台使用flask编写，提供DNSLOG，HTTPLOG等功能。 (界面懒得弄，后续有需要再说)。
  ☆30Updated 2 years ago
• mabangde / cdncheck_cn
  修改：https://github.com/projectdiscovery/cdncheck
  ☆52Updated last year
• silentsignal / WebSphere-WSIF-gadget
  CVE-2020-4464 / CVE-2020-4450
  ☆33Updated 4 years ago
• Contrast-Security-OSS / Spring-Kafka-POC-CVE-2023-34040
  POC for Spring Kafka Deserialization Vulnerability CVE-2023-34040
  ☆46Updated last month
• yzddmr6 / MyPresentations
  My security presentations
  ☆28Updated 2 years ago
• w4iting4 / FindIcmpP
  解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具
  ☆31Updated 3 years ago
• 1c3z / ARL-Distributed
  ARL Docker 环境分布式部署
  ☆19Updated 4 years ago
• DeEpinGh0st / CVE-2022-28346
  Django QuerySet.annotate(), aggregate(), extra() SQL 注入
  ☆24Updated 3 years ago
• Anthem-whisper / YApi-Exploit
  YApi boolean-based injection exploit.
  ☆58Updated 2 years ago
• GlassyAmadeus / CVE-2024-20931
  The Poc for CVE-2024-20931
  ☆74Updated last year
• bit4woo / burp-api-common
  common methods that used by my burp extension projects
  ☆52Updated last year
• woodpecker-appstore / EchoToFileConverter
  Windows & linux Echo to file command converter
  ☆25Updated 4 years ago
• jas502n / GitlabVer
  gitlab version index
  ☆64Updated 4 years ago
• midisec / CVE-2023-36899
  CVE-2023-36899漏洞的复现环境和工具，针对ASP.NET框架中的无cookie会话身份验证绕过。
  ☆31Updated 2 years ago
• timwhitez / gobusterdns
  lite version of gobuster. Only subdomain brute. 内网轻量化子域名爆破工具
  ☆44Updated 4 years ago