BishopFox / spfmap

Related projects ⓘ

Alternatives and complementary repositories for spfmap

• cosmoscrew / gomassdns
  A better dns bruteforcer written in golang
  ☆13Updated 6 years ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 6 years ago
• gocaio / sct
  Security checks for http headers and cookies
  ☆24Updated 3 years ago
• ameenmaali / qsinject
  qsinject (Query String Inject) is a tool that allows you to quickly substitute query string values with regex matches, one-at-a-time.
  ☆30Updated 4 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 6 years ago
• rverton / gxss
  Blind XSS service alerting over slack or email
  ☆31Updated 5 years ago
• spaceraccoon / serverless-recon-example
  Example of a serverless web reconaissance workflow's AWS architecture.
  ☆10Updated last year
• jakewarren / tldomains
  Tiny library to parse the subdomain, domain, and tld extension from a host string
  ☆23Updated 2 years ago
• codingo / guides
  A companion repo to accompany detailed guides and YouTube content to allow users to follow along
  ☆12Updated 4 years ago
• MrTaherAmine / pentest-management
  Simple webinterface combining different recon tools.
  ☆12Updated 6 years ago
• asecurityteam / bug_crowd_client
  Python implementation of a Bugcrowd api client.
  ☆11Updated 2 months ago
• Static-Flow / vhostChecker
  VHostChecker takes a csv list of targets in the form of domain,ip,port and runs 4 seperate connection checks to get a quick sense of how …
  ☆33Updated last year
• N0MoreSecr3ts / wraith-signatures
  Signatures for wraith used to detect secrets across various sources
  ☆15Updated 2 years ago
• plenumlab / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆38Updated 5 years ago
• spenkk / rapiddns-extractor
  Extract subdomains from rapiddns.io
  ☆23Updated last year
• Leoid / Burp2Slack
  Push notifications to Slack channel or to custom server based on BurpSuite response conditions.
  ☆18Updated 3 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated last year
• toufik-airane / leakin
  Secrets detection based on regular expressions.
  ☆22Updated last year
• gwen001 / BBstats
  Bug Bounty statistics tool.
  ☆28Updated last year
• Static-Flow / goRecorder
  During pentesting I often miss screenshots of events for reports due to the quick pace of testing and a lack of foreknowledge about what …
  ☆25Updated 5 years ago
• nccgroup / clickjacking-poc
  Clickjacking PoC Generator
  ☆35Updated 4 years ago
• thelikes / gwdomains
  sub domain wild card filtering tool
  ☆41Updated 4 years ago
• hakluke / haksecuritytxt
  Takes a list of domains as the input, checks if they have a security.txt, outputs the results.
  ☆13Updated 4 years ago
• ChrisTruncer / gnmap-parser
  Script to parse multiple Nmap .gnmap exports into various plain-text formats for easy analysis.
  ☆23Updated 10 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆46Updated 5 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 5 years ago
• cybercdh / vpaths
  Take a list of URIs and print all the of the paths
  ☆10Updated 4 years ago
• ameenmaali / whoareyou
  whoareyou is a tool to find the underlying technology/software used in a list of websites passed through stdin (using Wappalyzer dataset)
  ☆31Updated 4 years ago
• rverton / redAsset
  Enumerate subdomains by parsing Rapid7 FDNS dumps and CA transparency logs
  ☆27Updated 5 years ago