614 Open source projects that are alternatives of or similar to Subcert

A collection of some of my scripts

Pentest: Subdomains enumeration tool for penetration testers.

A big list of Android Hackerone disclosed reports and other resources.

Subdomain Takeover tool written in Go

goverview - Get an overview of the list of URLs

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection

This challenge is Inon Shkedy's 31 days API Security Tips.

The Swiss Army knife for automated Web Application Testing

Little Bug Bounty & Hacking Tools⚔️

all manner of wordlists

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

🎯 XML External Entity (XXE) Injection Payload List

A list of interesting payloads, tips and tricks for bug bounty hunters.

Astra is a tool to find URLs and secrets inside a webpage/files

Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.

Multi Tool Subdomain Enumeration

#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Decode All Bases - Base Scheme Decoder

A toolkit for Security Researchers

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

Related subdomains finder

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

This document proposes a way of standardising the structure, language, and grammar used in security policies.

The fastest dork scanner written in Go.

Hetty is an HTTP toolkit for security research.

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Intelligence tool but without API key

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

Web path scanner

A collection of response templates for invalid bug bounty reports.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

RFD Checker - security CLI tool to test Reflected File Download issues

Scan for open AWS S3 buckets and dump the contents

Awesome cloud enumerator

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

An OSINT tool to find contacts in order to report security vulnerabilities.

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Information Security Library

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Turn your VPS into an attack box

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

A Tool for Domain Flyovers

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Secret and/ credential patterns used for gf.

Leaked pentesting manuals given to Conti ransomware crooks

Multi-threaded Padding Oracle attacks against any service. Written in Rust.

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations