Skip to content

Releases: siparsecurity/shadowmap

Release list

ShadowMap v1.0.0

Choose a tag to compare

@sayedsubayyal sayedsubayyal released this 07 Jul 07:41

First public release of ShadowMap — a web reconnaissance tool for authorized penetration testing and bug bounty research.

Features:

  • DNS recon: zone transfer attempts, NS/MX/TXT enumeration
  • Subdomain enumeration: passive (crt.sh) + active brute-force
  • Port & service scanning: pure Python sockets, optional nmap
  • Technology fingerprinting: CMS detection, server/framework identification
  • Vulnerability hints: exposed .git, .env, misconfigs, missing security headers
  • Stealth mode: rotating user-agents, random delays
  • HTML + JSON report output

For authorized security testing only. Always obtain written permission before scanning any target.