In-depth attack surface mapping and asset discovery
-
Updated
Apr 13, 2024 - Go
In-depth attack surface mapping and asset discovery
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Quickly discover exposed hosts on the internet using multiple search engines.
Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.
a recon tool that allows searching on URLs that are exposed via shortener services
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
OSINT tools and more but without API key
Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration
Go CLI and Library for quickly mapping organization network ranges using ASN information.
A tool to fastly get all javascript sources/files
Scrape domain names from SSL certificates of arbitrary hosts
Second-order subdomain takeover scanner
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
Discover new target domains using Content Security Policy
Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal
Add a description, image, and links to the recon topic page so that developers can more easily learn about it.
To associate your repository with the recon topic, visit your repo's landing page and select "manage topics."