RossGeerlings / webstor
WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted servers via zone transfer data - stores their responses, and lets you query for known web technologies, including those with zero-day vulnerabilities.
☆157Updated last year
Alternatives and similar repositories for webstor:
Users that are interested in webstor are comparing it to the libraries listed below
- Weaponizing Live CT logs for automated monitoring of assets☆133Updated 3 years ago
- automated password spraying tool☆148Updated 3 years ago
- A pre-DDoS security assessment tool☆120Updated 3 years ago
- Boomerang is a tool to expose multiple internal servers to web/cloud. Agent & Server are pretty stable and can be used in Red Team for Mu…☆221Updated 4 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆341Updated 4 years ago
- Monitoring GitHub for sensitive data shared publicly☆66Updated 3 years ago
- Scans SPF and DMARC records for issues that could allow email spoofing.☆130Updated 2 years ago
- DNSrr is a tool written in bash, used to enumerate all the juicy stuff from DNS.☆120Updated 2 years ago
- Tool to discover external and internal network attack surface☆195Updated 11 months ago
- Offensive Security recon tool☆92Updated 3 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Updated 3 years ago
- Subcert is a subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.☆79Updated 3 years ago
- A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks☆65Updated 3 years ago
- Shodan Monitoring integration for TheHive.☆130Updated 4 months ago
- Combined port scanning w/ Masscan's speed & Nmap's scanning features.☆150Updated 2 years ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom�☆183Updated 2 years ago
- Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…☆196Updated last year
- Turns any junk text into a usable wordlist for brute-forcing.☆220Updated last year
- automated web assets enumeration & scanning [DEPRECATED]☆289Updated 2 years ago
- Collaborative pentest tool with highly customizable tools☆73Updated 3 years ago
- Tool to generate csrf payloads based on vulnerable requests☆64Updated 4 years ago
- An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.☆179Updated last week
- 🏰 A Python script for AWS S3 bucket enumeration.☆142Updated 2 years ago
- Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered fo…☆197Updated 2 years ago
- One way to continuously monitor sensitive information that could be exposed on Github☆178Updated 4 years ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆122Updated 2 years ago
- Objectify-s3 is a tool that recursively checks AWS S3 buckets and objects for misconfigured permissions.☆15Updated 8 months ago
- Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥☆145Updated last year
- Serpscan is a powerfull php script designed to allow you to leverage the power of dorking straight from the comfort of your command line.☆65Updated 3 years ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆75Updated 2 years ago