Alternatives and similar repositories for h1domains

Users that are interested in h1domains are comparing it to the libraries listed below

• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆808Updated 3 months ago
• jaeles-project / jaeles-signatures
  Default signature for Jaeles Scanner
  ☆324Updated 3 years ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆651Updated last year
• cujanovic / Open-Redirect-Payloads
  Open Redirect Payloads
  ☆638Updated last year
• AlephNullSK / dnsgen
  DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…
  ☆1,022Updated 9 months ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆913Updated 3 years ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆527Updated last year
• geeknik / the-nuclei-templates
  Nuclei templates written by geeknik. Claude is my co-pilot. 🤖
  ☆279Updated 2 months ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆639Updated last year
• bp0lr / gauplus
  ☆296Updated 3 years ago
• tomnomnom / qsreplace
  Accept URLs on stdin, replace all query string values with a user-supplied value
  ☆842Updated 2 years ago
• ghsec / webHunt
  Web App bug hunting
  ☆573Updated 7 months ago
• gwen001 / github-subdomains
  Find subdomains on GitHub.
  ☆788Updated 2 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆415Updated 2 years ago
• In3tinct / See-SURF
  Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.
  ☆334Updated 2 months ago
• al-sultani / url-tracker
  Change monitoring app that checks the content of web pages in different periods.
  ☆357Updated 2 weeks ago
• elkokc / reflector
  Burp plugin able to find reflected XSS on page in real-time while browsing on site
  ☆1,181Updated 4 years ago
• allanlw / svg-cheatsheet
  A cheatsheet for exploiting server-side SVG processors.
  ☆772Updated 5 years ago
• chrislockard / api_wordlist
  A wordlist of API names for web application assessments
  ☆850Updated 4 months ago
• sw33tLie / bbscope
  Scope aggregation tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!
  ☆1,203Updated last week
• ameenmaali / urldedupe
  Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
  ☆381Updated 5 years ago
• dark-warlord14 / JSScanner
  You can read the writeup on this script here
  ☆275Updated 5 years ago
• KathanP19 / Gxss
  A tool to check a bunch of URLs that contain reflecting params.
  ☆595Updated last year
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆539Updated 7 years ago
• random-robbie / keywords
  ☆366Updated 3 years ago
• mhmdiaa / second-order
  Second-order subdomain takeover scanner
  ☆406Updated last month
• M4DM0e / DirDar
  DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
  ☆453Updated last year
• projectdiscovery / chaos-client
  Go client to communicate with Chaos DB API.
  ☆789Updated this week
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆777Updated last year
• CoreyD97 / BurpCustomizer
  Because just a dark theme wasn't enough!
  ☆576Updated 10 months ago