Alternatives and similar repositories for probable_subdomains

Users that are interested in probable_subdomains are comparing it to the libraries listed below

• cramppet / regulator

  View on GitHub
  Automated learning of regexes for DNS discovery
  ☆389Feb 18, 2023Updated 2 years ago
• root-tanishq / userefuzz

  View on GitHub
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆382May 19, 2023Updated 2 years ago
• zzzteph / sheye

  View on GitHub
  Opensource assets and vulnerability scanning tool
  ☆186Jan 20, 2026Updated 3 weeks ago
• SeifElsallamy / Blind-XSS-Manager

  View on GitHub
  Never forget where you inject.
  ☆298Aug 15, 2025Updated 5 months ago
• gwen001 / gitlab-subdomains

  View on GitHub
  Find subdomains on GitLab.
  ☆104Apr 28, 2024Updated last year
• trickest / mksub

  View on GitHub
  Generate tens of thousands of subdomain combinations in a matter of seconds
  ☆273Sep 25, 2023Updated 2 years ago
• musana / mx-takeover

  View on GitHub
  mx-takeover focuses DNS MX records and detects misconfigured MX records.
  ☆357Jul 17, 2023Updated 2 years ago
• Th0h0 / autossrf

  View on GitHub
  Smart context-based SSRF vulnerability scanner.
  ☆361May 5, 2022Updated 3 years ago
• R0X4R / Parshu

  View on GitHub
  Filter URLs to save your time.
  ☆60Jul 29, 2022Updated 3 years ago
• Josue87 / gotator

  View on GitHub
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆503Jul 17, 2022Updated 3 years ago
• ayadim / Nuclei-bug-hunter

  View on GitHub
  i will upload more templates here to share with the comunity.
  ☆567Apr 17, 2024Updated last year
• musana / fuzzuli

  View on GitHub
  fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.
  ☆936Aug 24, 2023Updated 2 years ago
• projectdiscovery / fuzzing-templates

  View on GitHub
  Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
  ☆87May 2, 2024Updated last year
• boy-hack / ksubdomain

  View on GitHub
  Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second
  ☆1,173Aug 14, 2025Updated 6 months ago
• devanshbatham / rayder

  View on GitHub
  A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows
  ☆300Sep 8, 2023Updated 2 years ago
• xnl-h4ck3r / xnLinkFinder

  View on GitHub
  A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets
  ☆1,515Jan 15, 2026Updated 3 weeks ago
• buggysolid / bugbounty-wordlist

  View on GitHub
  Real world bug bounty wordlists
  ☆117Jul 20, 2023Updated 2 years ago
• projectdiscovery / alterx

  View on GitHub
  Fast and customizable subdomain wordlist generator using DSL
  ☆920Feb 5, 2026Updated last week
• xnl-h4ck3r / urless

  View on GitHub
  De-clutter a list of URLs
  ☆384Feb 3, 2026Updated last week
• p0dalirius / webapp-wordlists

  View on GitHub
  This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contai…
  ☆533Dec 4, 2024Updated last year
• eslam3kl / SQLiDetector

  View on GitHub
  Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests w…
  ☆631Jan 4, 2026Updated last month
• trickest / wordlists

  View on GitHub
  Real-world infosec wordlists, updated regularly
  ☆1,632Updated this week
• SirBugs / endext

  View on GitHub
  EndExt is a .go tool for extracting all the possible endpoints from the JS files
  ☆219Jul 14, 2024Updated last year
• gwen001 / github-endpoints

  View on GitHub
  Find endpoints on GitHub.
  ☆214Mar 28, 2023Updated 2 years ago
• gwen001 / related-domains

  View on GitHub
  Find related domains of a given domain.
  ☆103Aug 5, 2023Updated 2 years ago
• 0xPugal / fuzz4bounty

  View on GitHub
  1337 Wordlists for Bug Bounty Hunting
  ☆928Updated this week
• nullenc0de / paramhunter

  View on GitHub
  Looks for parameters in urls
  ☆34Oct 14, 2024Updated last year
• fcavallarin / burp-dom-scanner

  View on GitHub
  Burp Suite's extension to scan and crawl Single Page Applications
  ☆107Apr 14, 2023Updated 2 years ago
• Th0h0 / autopoisoner

  View on GitHub
  Web cache poisoning vulnerability scanner.
  ☆72May 5, 2022Updated 3 years ago
• byt3hx / jsleak

  View on GitHub
  jsleak is a tool to find secret , paths or links in the source code during the recon.
  ☆575Sep 25, 2025Updated 4 months ago
• edoardottt / favirecon

  View on GitHub
  Use favicons to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.
  ☆231Feb 2, 2026Updated last week
• hakluke / hakoriginfinder

  View on GitHub
  Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
  ☆975Jan 12, 2024Updated 2 years ago
• ThreatUnknown / jsubfinder

  View on GitHub
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆281Jan 15, 2025Updated last year
• cosad3s / hfinder

  View on GitHub
  Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
  ☆54Oct 25, 2024Updated last year
• xnl-h4ck3r / GAP-Burp-Extension

  View on GitHub
  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
  ☆1,495Jan 8, 2026Updated last month
• redhuntlabs / HTTPLoot

  View on GitHub
  An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code …
  ☆407Jan 22, 2025Updated last year
• volkandindar / agartha

  View on GitHub
  A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
  ☆394Feb 4, 2026Updated last week
• six2dez / OneListForAll

  View on GitHub
  Rockyou for web fuzzing
  ☆3,014Aug 28, 2025Updated 5 months ago
• laluka / bypass-url-parser

  View on GitHub
  bypass-url-parser
  ☆1,111Feb 7, 2026Updated last week