A fast and continuous secret scanner in Go

Discover new target domains using Content Security Policy

Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.

Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.

Quickly discover exposed hosts on the internet using multiple search engines.

Go CLI and Library for quickly mapping organization network ranges using ASN information.

Get some useful data from Clouds for your targets

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges

In-depth attack surface mapping and asset discovery

Obtain domains from certificate transparency logs

subdog is a subdomain enumeration tools, this tool collect number of different sources to create a list of root subdomains

Filter list of subdomains by level.

subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains. It fetches subdomains from various sources [crtsh, hackertargetapi, anubis, alienvault, rappiddns, urlscan ] , saves them to a SQLite database, and can notify updates via Discord.

Mass scale Hidden parameters discovery using Arjun.

lightspeed subdomain bruteforcing

A tech enumeration toolkit focused on 404 Not found pages.

A web crawler written in Go

面向红队的, 高度可控可拓展的自动化引擎