Subdomain enumeration statistics and wordlists from bugbounty scopes.
☆34Mar 24, 2022Updated 3 years ago
Alternatives and similar repositories for substats
Users that are interested in substats are comparing it to the libraries listed below
Sorting:
- Fast AEM scope gathering tool for all your public and private BugCrowd Programs☆10Jul 14, 2021Updated 4 years ago
- Extract domain from SSL Information☆15Nov 23, 2021Updated 4 years ago
- a tool that compiles a csv of all h1 program stats☆49Jul 2, 2023Updated 2 years ago
- Mass querying whois records☆28Dec 28, 2021Updated 4 years ago
- Given a list of domains, you resolve them and get the IP addresses.☆47Mar 2, 2022Updated 4 years ago
- GH-Takeover — GitHub Pages Sub-domain Takeover Automation!☆28Apr 17, 2021Updated 4 years ago
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.☆59Jan 22, 2023Updated 3 years ago
- ☆33Jun 27, 2022Updated 3 years ago
- An HTTP request smuggling scanner designed to work at scale☆25Oct 2, 2022Updated 3 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆61Jul 26, 2021Updated 4 years ago
- DNS and Target HTTP History Local Storage and Search☆63Feb 14, 2021Updated 5 years ago
- Standardizing Security Titles☆13Dec 31, 2025Updated 2 months ago
- ☆44Jul 23, 2021Updated 4 years ago
- Slides and demo code for past presentations☆12Feb 17, 2022Updated 4 years ago
- Simple tools to handle string and generate subdomain permutations☆15Jun 8, 2022Updated 3 years ago
- ☆148Dec 23, 2022Updated 3 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆506Jul 17, 2022Updated 3 years ago
- Client-Side Prototype Pollution Tools☆87Sep 21, 2021Updated 4 years ago
- #️⃣ 🕸️ 👤 HTTP Headers Hashing☆13Aug 27, 2023Updated 2 years ago
- A Golang module to resolve multiple DNS requests concurrently while respecting a rate limit on the resolvers.☆12May 26, 2021Updated 4 years ago
- A collection of scripts for bug-bounty related stuff☆39Sep 4, 2020Updated 5 years ago
- Saves pages to Wayback machine☆12Dec 2, 2024Updated last year
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆156Nov 24, 2023Updated 2 years ago
- Windows 7/2008 R2 EoP☆13Feb 12, 2021Updated 5 years ago
- ☆16Nov 15, 2022Updated 3 years ago
- bug bounty automation☆13Jul 2, 2021Updated 4 years ago
- Http request smuggling vulnerability scanner☆229Aug 11, 2022Updated 3 years ago
- ☆27Feb 7, 2023Updated 3 years ago
- Automated learning of regexes for DNS discovery☆392Feb 18, 2023Updated 3 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Feb 19, 2021Updated 5 years ago
- Subdomain Takeover tool with web UI☆57Feb 24, 2023Updated 3 years ago
- List HackerOne private program assets☆154Jun 24, 2021Updated 4 years ago
- Simple fork from degoogle original project with bug hunting purposes☆91Jun 15, 2022Updated 3 years ago
- Collection of tools to interact with Intigriti website☆16Aug 10, 2024Updated last year
- ⚡ Golang library for quick make pentest tools☆15Apr 7, 2025Updated 10 months ago
- Can run a payload shellcode in-memory by injecting a process. (does not bypass AV).☆16Sep 1, 2025Updated 6 months ago
- Alpha version code of Recon UI☆15Feb 26, 2018Updated 8 years ago
- 🗺 Convert nmap XML output to beautiful JSON☆16Mar 17, 2023Updated 2 years ago
- ☆17May 22, 2021Updated 4 years ago