- 站长之家: http://whois.chinaz.com
- 国外在线: https://bgp.he.net
- ENScan: https://github.com/wgpsec/ENScan_GO
- 小蓝本: https://www.xiaolanben.com/pc
- 企查查: https://www.qichacha.com
- 天眼查: https://www.tianyancha.com
- 爱企查: https://aiqicha.baidu.com
- OneForAll: https://github.com/shmilylty/OneForAll
- Amass: https://github.com/OWASP/Amass
- Subfinder: https://github.com/projectdiscovery/subfinder
- ksubdomain: https://github.com/knownsec/ksubdomain
- subDomainsBrute: https://github.com/lijiejie/subDomainsBrute
- Sonar: https://omnisint.io/
- 查子域: https://chaziyu.com/ (在线)
- Nmap: https://nmap.org
- kscan: https://github.com/lcvvvv/kscan
- Txportmap: https://github.com/4dogs-cn/TXPortMap
- Masscan: https://github.com/robertdavidgraham/masscan
- 后台地址
- site:xxx.com intitle:管理|后台|登陆|管理员|系统|内部
- site:xxx.com inurl:login|admin|system|guanli|denglu|manage|admin_login|auth|dev
- 敏感文件
- site:xxx.com (filetype:doc OR filetype:ppt OR filetype:pps OR filetype:xls OR filetype:docx OR filetype:pptx OR filetype:ppsx OR filetype:xlsx OR filetype:odt OR filetype:ods OR filetype:odg OR filetype:odp OR filetype:pdf OR filetype:wpd OR filetype:svg OR filetype:svgz OR filetype:indd OR filetype:rdp OR filetype:sql OR filetype:xml OR filetype:db OR filetype:mdb OR filetype:sqlite OR filetype:log OR filetype:conf)
- 测试环境
- site:xxx.com inurl:test|ceshi
- site:xxx.com intitle:测试
- 邮箱
- site:xxx.com (intitle:"Outlook Web App" OR intitle:"邮件" OR inurl:"email" OR inurl:"webmail")
- 其他
- site:xxx.com inurl:api|uid=|id=|userid=|token|session
- site:xxx.com intitle:index.of "server at"
- 代码搜索: https://github.com/search?type=code&q=xxxx.com
- @xxx.com password/secret/credentials/token/config/pass/login/ftp/ssh/pwd
- @xxx.com security_credentials/connetionstring/JDBC/ssh2_auth_password/send_keys
- 语雀: https://www.yuque.com/search
- CSDN: https://so.csdn.net/so/search
- 简书: https://www.jianshu.com/search
- Hunter: https://hunter.qianxin.com
- FOFA: https://fofa.so
- Shadon: https://www.shodan.io
- ZoomEye: https://www.zoomeye.org
- Quake: https://quake.360.cn/quake/#/index
- Seebug: https://www.seebug.org
- Exploit Database: https://www.exploit-db.com
- Vulners: https://vulners.com
- Sploitus: https://sploitus.com
- 小蓝本: https://www.xiaolanben.com/pc
- 七麦: https://www.qimai.cn
- AppStore: https://www.apple.com/app-store
- 微信直接搜索
- 搜狗: https://weixin.sogou.com
- 微信直接搜小程序
- 支付宝直接搜小程序
- 小蓝本: https://www.xiaolanben.com/pc
- ObserverWard:https://github.com/0x727/ObserverWard_0x727
- 火狐插件: Wappalyzer
- 云悉: http://www.yunsee.cn (在线)
- EHole: https://github.com/EdgeSecurityTeam/EHole
- TideFinger: https://github.com/TideSec/TideFinger
- HTTPX: https://github.com/projectdiscovery/httpx
- WebBatchRequest: https://github.com/ScriptKid-Beta/WebBatchRequest
- Bscan: https://github.com/broken5/bscan
- Dirsearch: https://github.com/maurosoria/dirsearch
- Dirmap: https://github.com/H4ckForJob/dirmap
-
JSFinder: https://github.com/Threezh1/JSFinder
-
URLFinder: https://github.com/pingc0y/URLFinder
-
LinkFinder: https://github.com/GerbenJavado/LinkFinder
-
Packer-Fuzzer: https://github.com/rtcatc/Packer-Fuzzer (webpack)
-
搜索关键接口
- config/api
- method:"get"
- http.get("
- method:"post"
- http.post("
- $.ajax
- service.httppost
- service.httpget
- 在线: https://ipchaxun.com
- dns检测: https://tools.ipip.net/dns.php
- Xcdn: https://github.com/3xp10it/xcdn
- WhatWaf: https://github.com/Ekultek/WhatWaf
- wafw00f: https://github.com/EnableSecurity/wafw00f