Trending repositories for topic recon
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
InfoHound is an OSINT to extract a large amount of data given a web domain name.
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
Querytool is an OSINT framework based on Google Spreadsheet. With this tool you can perform complex search of terms, people, email addresses, files and many more.
Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
Quickly discover exposed hosts on the internet using multiple search engines.
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
Querytool is an OSINT framework based on Google Spreadsheet. With this tool you can perform complex search of terms, people, email addresses, files and many more.
A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
🔓A curated list of modern Android exploitation conference talks.
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
InfoHound is an OSINT to extract a large amount of data given a web domain name.
OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
A collection of awesome one-liner scripts especially for bug bounty tips.
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.
Enumerate old versions of robots.txt paths using Wayback Machine for content discovery
Resources, repos and scripts for pentesters and bug bounty.
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
A tool for quickly collecting function selectors and decoding signatures from on-chain EVM bytecode.
A python script to extract information from a Microsoft Remote Desktop Web Access (RDWA) application
Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitation of API endpoints and secrets committed to workspaces, collec...
Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.
🔓A curated list of modern Android exploitation conference talks.
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exp...
Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitation of API endpoints and secrets committed to workspaces, collec...
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
InfoHound is an OSINT to extract a large amount of data given a web domain name.
Nodesub is a command-line tool for finding subdomains in bug bounty programs
MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
GitOSINT: The OSINT Powerhouse for Discord. The go-to Discord bot for Open Source Intelligence (OSINT).
A Tool for Bug Bounty Hunters that uses Passive and Active Techniques to fetch URLs as a strong Recon, so you can then create Attack Vectors (XSS, Nuclei, SQLi etc...)
Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
A tool for quickly collecting function selectors and decoding signatures from on-chain EVM bytecode.
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
A collection of awesome one-liner scripts especially for bug bounty tips.
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
🔓A curated list of modern Android exploitation conference talks.
GitOSINT: The OSINT Powerhouse for Discord. The go-to Discord bot for Open Source Intelligence (OSINT).
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exp...
Hastly written Tools & Scripts for Personal Use Cases & Bug Bounties
CHOMTE.SH is a powerful shell script designed to automate reconnaissance tasks during penetration testing. It utilizes various Go-based tools to gather information and identify the attack surface, mak...
Nodesub is a command-line tool for finding subdomains in bug bounty programs
Minimal web server enumeration & attack surface detection tool based on results of nmap.
OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.
MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
A tool for quickly collecting function selectors and decoding signatures from on-chain EVM bytecode.
JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various extraction methods and provides additional options for file down...
Incursore came from nmapAutomator to be your personal raider while you enumerate a target.