In-depth attack surface mapping and asset discovery
-
Updated
Apr 13, 2024 - Go
In-depth attack surface mapping and asset discovery
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Quickly discover exposed hosts on the internet using multiple search engines.
OSINT tools and more but without API key
Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
a recon tool that allows searching on URLs that are exposed via shortener services
Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration
A tool to fastly get all javascript sources/files
Scrape domain names from SSL certificates of arbitrary hosts
Second-order subdomain takeover scanner
Go CLI and Library for quickly mapping organization network ranges using ASN information.
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal
Add a description, image, and links to the recon topic page so that developers can more easily learn about it.
To associate your repository with the recon topic, visit your repo's landing page and select "manage topics."