zricethezav/h1domains external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

zricethezav/h1domains

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/zricethezav/h1domains)

Close

zricethezav / h1domainsView on GitHubMore

• External links
• Readme badge

HackerOne "in scope" domains

☆506Mar 5, 2026Updated this week

Alternatives and similar repositories for h1domains

Users that are interested in h1domains are comparing it to the libraries listed below

• arkadiyt / bounty-targets-data

  View on GitHub
  This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …
  ☆3,659Updated this week
• 1ndianl33t / Gf-Patterns

  View on GitHub
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,401Sep 13, 2024Updated last year
• arkadiyt / bounty-targets

  View on GitHub
  This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data…
  ☆707Mar 1, 2026Updated last week
• sw33tLie / bbscope

  View on GitHub
  Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!
  ☆1,313Updated this week
• tomnomnom / hacks

  View on GitHub
  A collection of hacks and one-off scripts
  ☆2,423Mar 13, 2025Updated 11 months ago
• streaak / keyhacks

  View on GitHub
  Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
  ☆6,089Aug 14, 2024Updated last year
• reddelexc / hackerone-reports

  View on GitHub
  Top disclosed reports from HackerOne
  ☆5,358Feb 28, 2026Updated last week
• GerbenJavado / LinkFinder

  View on GitHub
  A python script that finds endpoints in JavaScript files
  ☆4,297Apr 13, 2024Updated last year
• internetwache / CT_subdomains

  View on GitHub
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆349Oct 13, 2021Updated 4 years ago
• projectdiscovery / public-bugbounty-programs

  View on GitHub
  Community curated list of public bug bounty and responsible disclosure programs.
  ☆1,283Jan 5, 2026Updated 2 months ago
• s0md3v / Arjun

  View on GitHub
  HTTP parameter discovery suite.
  ☆6,109Feb 20, 2025Updated last year
• cujanovic / SSRF-Testing

  View on GitHub
  SSRF (Server Side Request Forgery) testing resources
  ☆2,482Oct 12, 2024Updated last year
• melbadry9 / SSLEnum

  View on GitHub
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆42Nov 10, 2025Updated 4 months ago
• milo2012 / pathbrute

  View on GitHub
  Pathbrute
  ☆456Jun 3, 2020Updated 5 years ago
• EdOverflow / can-i-take-over-xyz

  View on GitHub
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,572Feb 8, 2025Updated last year
• m4ll0k / BBTz

  View on GitHub
  BBT - Bug Bounty Tools (examples💡)
  ☆1,880Apr 5, 2024Updated last year
• yassineaboukir / sublert

  View on GitHub
  Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…
  ☆1,027Feb 5, 2021Updated 5 years ago
• lc / gau

  View on GitHub
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
  ☆4,842Jan 1, 2025Updated last year
• jaeles-project / jaeles

  View on GitHub
  The Swiss Army knife for automated Web Application Testing
  ☆2,323May 8, 2024Updated last year
• trickest / inventory

  View on GitHub
  Asset inventory of over 800 public bug bounty programs.
  ☆1,520Feb 14, 2025Updated last year
• Findomain / Findomain

  View on GitHub
  The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…
  ☆3,693Mar 3, 2026Updated last week
• gwen001 / github-endpoints

  View on GitHub
  Find endpoints on GitHub.
  ☆214Mar 28, 2023Updated 2 years ago
• harleo / asnip

  View on GitHub
  ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
  ☆220Apr 10, 2022Updated 3 years ago
• robre / jsmon

  View on GitHub
  a javascript change monitoring tool for bugbounties
  ☆712Jul 31, 2024Updated last year
• tomnomnom / anew

  View on GitHub
  A tool for adding new lines to files, skipping duplicates
  ☆1,614Jan 12, 2024Updated 2 years ago
• PortSwigger / param-miner

  View on GitHub
  ☆1,410Jan 22, 2026Updated last month
• projectdiscovery / shuffledns

  View on GitHub
  MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering…
  ☆1,598Mar 2, 2026Updated last week
• swisskyrepo / SSRFmap

  View on GitHub
  Automatic SSRF fuzzer and exploitation tool
  ☆3,493Sep 4, 2025Updated 6 months ago
• honoki / bbrf-client

  View on GitHub
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆641Jul 7, 2025Updated 8 months ago
• michenriksen / aquatone

  View on GitHub
  A Tool for Domain Flyovers
  ☆5,904May 22, 2022Updated 3 years ago
• dwisiswant0 / gf-secrets

  View on GitHub
  Secret and/or credential patterns used for gf.
  ☆243Feb 10, 2023Updated 3 years ago
• lc / subjs

  View on GitHub
  Fetches javascript file from a list of URLS or subdomains.
  ☆837Jul 22, 2025Updated 7 months ago
• KathanP19 / JSFScan.sh

  View on GitHub
  Automation for javascript recon in bug bounty.
  ☆1,069Sep 9, 2023Updated 2 years ago
• modzero / mod0BurpUploadScanner

  View on GitHub
  HTTP file upload scanner for Burp Proxy
  ☆490Dec 25, 2023Updated 2 years ago
• haccer / subjack

  View on GitHub
  Subdomain Takeover tool written in Go
  ☆2,033Aug 13, 2023Updated 2 years ago
• jaeles-project / gospider

  View on GitHub
  Gospider - Fast web spider written in Go
  ☆2,885Apr 21, 2024Updated last year
• ameenmaali / qsfuzz

  View on GitHub
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆303Feb 12, 2023Updated 3 years ago
• six2dez / OneListForAll

  View on GitHub
  Rockyou for web fuzzing
  ☆3,033Feb 11, 2026Updated 3 weeks ago
• vortexau / dnsvalidator

  View on GitHub
  Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.
  ☆728Jan 16, 2024Updated 2 years ago