#Subfinder

Showing 9 of 9 repositories tagged #subfinder, ranked by stars

ayoubfathi
ayoubfathi
leaky-paths

A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Score
100
★ 1.2k ⑂ 171
komomon
komomon
Komo

🚀Komo, a comprehensive asset collection and vulnerability scanning tool. Komo 一个综合资产收集和漏洞扫描工具,集成了20余款工具,通过多种方式对子域进行获取,收集域名邮箱,进行存活探测,域名指纹识别,域名反查ip,ip端口扫描,web服务链接爬取并发送给xray,对web服务进行POC漏洞扫描,对主机进行主机漏洞扫描。

Score
50
★ 565 ⑂ 65
Python
tangxiaofeng7
tangxiaofeng7
cscan

Enterprise-grade Distributed Asset & Vulnerability Scanner. Features: Port Scanning, Subdomain Brute-force, Fingerprinting, and PoC Detection. Built on Go-Zero & Vue3. 高性能分布式网络资产扫描平台 (子域名扫描/端口扫描/指纹识别/弱口令爆破/JS识别/POC扫描)----------------------------点击下面URL获取高级POC

Score
88
★ 387 ⑂ 62 +5/day
Go
kh4sh3i
kh4sh3i
smartrecon

smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter

Score
38
★ 157 ⑂ 42
Shell
enenumxela
enenumxela
subdomains.sh

A wrapper around tools used for subdomain enumeration, to automate the workflow, on a given domain, written in bash.

Score
12
★ 79 ⑂ 12
Shell
vikrantbatra05
vikrantbatra05
HuntTheBug

Advanced reconnaissance framework for bug bounty hunters - Automate subdomain enumeration, vulnerability scanning, and security reconnaissance with 30+ integrated tools.

Score
62
★ 60 ⑂ 17
Shell
A3-N
A3-N
xpfarm

Free XP on bug bounty, vulnerability scanning by wrapping well maintained tools, to perform automated tests. Alongside AI agents for binary analysis, which includes connecting to external Android or emulator to perform dynamic analysis.

Score
75
★ 43 ⑂ 43
HTML
cyb3ratul
cyb3ratul
subtron

Subtron is a professional grade subdomain enumeration toolkit designed for security researchers, penetration testers, and bug bounty hunters. It automates the discovery of subdomains by integrating multiple industry-standard tools such as Amass, Subfinder, Assetfinder, Httpx, and crt.sh. The results are consolidated, deduplicated, and organized.

Score
25
★ 24 ⑂ 3
Shell
itszeeshan
itszeeshan
subdomainx

all-in-one subdomain enumeration and reconnaissance tool designed for modern cybersecurity professionals, penetration testers, and security researchers.

Score
0
★ 18 ⑂ 1
Go
Related Topics
#penetration-testing#bugbounty#nuclei#amass#httpx#recon#security-tools#reconnaissance#bug-bounty#pentest#security#hacking

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly