939 Open source projects that are alternatives of or similar to Subdomainizer

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Pentest: Subdomains enumeration tool for penetration testers.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Find secrets and passwords in container images and file systems

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

Scan secrets from Continuous Integration Build Logs

Domain availbility checker

One-click installer for Frida and Burp certs for SSL Pinning bypass

Awesome cloud enumerator

YARA malware query accelerator (web frontend)

Enumeration sub domains(枚举子域名)

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

A Tool for Domain Flyovers

An automated target reconnaissance pipeline.

Web Scan Lazy Tools - Python Package

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

🔎 shodansploit > v1.3.0

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

Little Bug Bounty & Hacking Tools⚔️

A supercharged S3 reverse proxy

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.

It's a Docker Environment for pentesting which having all the required tool for VAPT.

Subdomain discovery using the power of 'The Rapid7 Project Sonar datasets'

Related subdomains finder

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

Plugin to block compilation when unapproved dependencies are used or code styling does not comply.

A python tool to check subdomain takeover vulnerability

This repository created for personal use and added tools from my latest blog post.

List of bug bounty and coordinated vulnerability disclosure programs of companies/organisations in Switzerland

Fully automated offensive security framework for reconnaissance and vulnerability scanning

secureCodeBox (SCB) - continuous secure delivery out of the box

Hardening Ubuntu. Systemd edition.

A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

OneForAll是一款功能强大的子域收集工具

Web path scanner

平常看到好的渗透hacking工具和多领域效率工具的集合

Program to reverse Docker images into Dockerfiles

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

A cross-platform note-taking & target-tracking app for penetration testers.

Web application vulnerability scanner

a tool to analyze filesystem images for security

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Golang security checker

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Infection Monkey - An automated pentest tool

Extract endpoints marked as disallow in robots files to generate wordlists.