Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools

Slack Bot for monitoring websites for codebase changes

vīlicus is a bug bounty api dashboard

Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists

AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extracts potential vulnerable URLs, and checks them for XSS vulner…

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Knock Subdomain Scan

Angry IP Scanner - fast and friendly network scanner

vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information colle…

Fetches JavaScript files quickly and comprehensively.

Finding XSS during recon

Automate Scoping, OSINT and Recon assessments.

Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second

Standalone utility for service discovery on open ports!

「🔑」A tool used to hunt down API key leaks in JS files and pages

Resolvers updated daily for reconftw

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

The commands and scripts I used in the Live Recon Village talks

A command-line utility designed to discover URLs for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact dire…

A wrapper around tools used for subdomain enumeration, to automate the workflow, on a given domain, written in bash.

A bash script that automates the process of service discovery on specified target hosts. The aim of the scripts is reducing scan time, increasing scan efficiency and automating the workflow.

A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interac…

Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

WebMap-Nmap Web Dashboard and Reporting

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.

Gather and update all available and newest CVEs with their PoC.

Asset inventory of over 800 public bug bounty programs.