Alternatives and similar repositories for h1domains

Users that are interested in h1domains are comparing it to the libraries listed below

• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆783Updated last week
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆630Updated last year
• cujanovic / Open-Redirect-Payloads
  Open Redirect Payloads
  ☆630Updated 9 months ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆882Updated 3 years ago
• jaeles-project / jaeles-signatures
  Default signature for Jaeles Scanner
  ☆323Updated 3 years ago
• AlephNullSK / dnsgen
  DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…
  ☆992Updated 7 months ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆517Updated last year
• geeknik / the-nuclei-templates
  Nuclei templates written by geeknik. Claude is my co-pilot. 🤖
  ☆273Updated this week
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆634Updated last year
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆410Updated 2 years ago
• bp0lr / gauplus
  ☆296Updated 3 years ago
• ghsec / webHunt
  Web App bug hunting
  ☆571Updated 4 months ago
• al-sultani / url-tracker
  Change monitoring app that checks the content of web pages in different periods.
  ☆356Updated 5 months ago
• random-robbie / keywords
  ☆365Updated 3 years ago
• elkokc / reflector
  Burp plugin able to find reflected XSS on page in real-time while browsing on site
  ☆1,167Updated 4 years ago
• mhmdiaa / second-order
  Second-order subdomain takeover scanner
  ☆405Updated last month
• CoreyD97 / BurpCustomizer
  Because just a dark theme wasn't enough!
  ☆571Updated 7 months ago
• tomnomnom / qsreplace
  Accept URLs on stdin, replace all query string values with a user-supplied value
  ☆831Updated 2 years ago
• DiogoMRSilva / websitesVulnerableToSSTI
  Simple websites vulnerable to Server Side Template Injections(SSTI)
  ☆397Updated 2 years ago
• projectdiscovery / chaos-client
  Go client to communicate with Chaos DB API.
  ☆747Updated last week
• gwen001 / github-subdomains
  Find subdomains on GitHub.
  ☆761Updated 2 years ago
• BitTheByte / Monitorizer
  Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
  ☆279Updated last year
• In3tinct / See-SURF
  Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.
  ☆323Updated this week
• dark-warlord14 / JSScanner
  You can read the writeup on this script here
  ☆275Updated 5 years ago
• KathanP19 / Gxss
  A tool to check a bunch of URLs that contain reflecting params.
  ☆586Updated last year
• allanlw / svg-cheatsheet
  A cheatsheet for exploiting server-side SVG processors.
  ☆749Updated 5 years ago
• InitRoot / BurpJSLinkFinder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆789Updated last year
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆772Updated last year
• ameenmaali / urldedupe
  Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
  ☆373Updated 5 years ago
• jobertabma / relative-url-extractor
  A small tool that extracts relative URLs from a file.
  ☆752Updated 4 years ago