Alternatives and similar repositories for web-recon

Users that are interested in web-recon are comparing it to the libraries listed below

• roottusk / xforwardy
  Host Header Injection Scanner
  ☆47Updated 4 years ago
• eslam3kl / Explorer
  Explorer is a very useful tool which will help you in the Recon phase in Bug Bounty hunting or Web Pentesting. It can perform a lot of th…
  ☆23Updated 4 years ago
• ethicalhackingplayground / dorkX
  Pipe different tools with google dork Scanner
  ☆56Updated 5 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆70Updated 5 years ago
• z3dc0ps / 0x0p1n3r
  0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover
  ☆57Updated 4 years ago
• cspshivam / easyrecon
  Tool to automate recon
  ☆43Updated 3 years ago
• Knowledge-Wisdom-Understanding / Auto-Recon
  Information-Gathering Shell Script
  ☆30Updated 4 years ago
• inj3ctor-m4 / WebHackingNotes
  RECON Notes taking from every fucking book about bugbounty and web-app penetration testing exists
  ☆20Updated 5 years ago
• 0xarun / s1mr3c
  Simple recon tool automates your recon process
  ☆17Updated 2 years ago
• 0xapt / subzer0
  A tool that scans a list of given domains, and returns the status codes for each domain on both port 80 & 443
  ☆18Updated 4 years ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆68Updated 5 years ago
• hahwul / mzap
  ⚡️ Multiple target ZAP Scanning
  ☆103Updated last year
• ryandamour / crlfmap
  CRLFMap is a tool to find HTTP Splitting vulnerabilities
  ☆33Updated 4 years ago
• Josue87 / BurpMetaFinder
  Burp Suite extension for extracting metadata from files
  ☆20Updated 4 years ago
• arhaxor21 / BruteList
  Brute List is an updated word list for brute-forcing the assets. This is not like a normal outdated word list. I have collected several l…
  ☆33Updated 4 years ago
• R0X4R / scvault
  Custom scripts for directory fuzzing, subdomain enumeration, and more.
  ☆43Updated 3 years ago
• hahwul / action-dalfox
  XSS scanning with Dalfox on Github-action
  ☆25Updated last year
• luisfontes19 / CSRFER
  Tool to generate csrf payloads based on vulnerable requests
  ☆64Updated 4 years ago
• random-robbie / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆19Updated 6 years ago
• infosecsecurity / Spaghetti
  Spaghetti - Web Application Security Scanner
  ☆20Updated 8 years ago
• notmarshmllow / Bug-Hunting-With-Bash
  Cool One Liners at one place to make your recon and bug bounty skills better !
  ☆14Updated 4 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• hahwul / hbxss
  Security test tool for Blind XSS
  ☆26Updated 5 years ago
• cujanovic / Virtual-host-wordlist
  Virtual host wordlist
  ☆52Updated 4 years ago
• zeronine9 / Blind_SPOT
  Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI
  ☆26Updated 4 years ago
• SomeKirill / wordlist_generator
  Unique wordlist generator of unique wordlists.
  ☆42Updated 2 years ago
• hacker50120 / CasperEye
  Advanced Recon Tool
  ☆26Updated 5 years ago
• tedmdelacruz / recon-scripts
  A simple reconnaissance framework for bug bounty hunting
  ☆37Updated 4 years ago
• bbhunter / attack-tools
  A set of tools, procedures, and playbooks for performing bug bounties
  ☆16Updated 6 years ago
• KingOfBugbounty / SecretFinder
  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
  ☆35Updated 4 years ago