Spoofy
Subdominator
Spoofy | Subdominator | |
---|---|---|
2 | 1 | |
542 | 183 | |
- | 8.2% | |
5.4 | 7.9 | |
2 months ago | 4 months ago | |
Python | C# | |
Creative Commons Zero v1.0 Universal | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Spoofy
Subdominator
-
Show HN: Subdominator – A New Approach to Subdomain Takeovers
Hey everyone! I just wanted to show off a cool new tool I made for bug bounties and pentesting, the direct link is here: https://github.com/Stratus-Security/Subdominator
Subdominator is a subdomain takeover tool (yes, there's lots of options already) but I did a case study on the functionality of the existing solutions, identified the shortcomings of each and made a more comprehensive and accurate tool. This is outlined in the linked post I made on the company blog.
Feedback, questions or requests are always welcome! Hope you like it :)
What are some alternatives?
vulnerable-code-snippets - Vulnerable code snippets repository showcasing different vulnerabilities to practice code analysis skills.
dirsearch - Web path scanner
SSTImap - Automatic SSTI detection and exploitation tool with interactive interface
Sooty - The SOC Analysts all-in-one CLI tool to automate and speed up workflow.
crimson - Web Application Security Testing Tools
mi-x - Determine whether your compute is truly vulnerable to a specific vulnerability by accounting for all factors which affect *actual* exploitability (runtime execution, configuration, permissions, existence of a mitigation, OS, etc..)
blackhat_python_book_code - Source code and exercises from the book "Black Hat Python" by Justin Seitz.
Redeye - Redeye is a tool intended to help you manage your data during a pentest operation
trustymail - Scan domains and return data based on trustworthy email best practices
Evilginx3-Phishlets - This repository provides penetration testers and red teams with an extensive collection of dynamic phishing templates designed specifically for use with Evilginx3.