Alternatives and similar repositories for Recon-tools

Users that are interested in Recon-tools are comparing it to the libraries listed below

• offhourscoding / recon
  Bug Bounty Recon Script
  ☆18Updated 4 years ago
• 1ndianl33t / 1ndiList
  Recon Custom WordList Ganerator
  ☆58Updated 4 years ago
• Healdb / Elevate
  Horizontal Domain Discovery
  ☆76Updated last year
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• dwisiswant0 / bounty-targets-alert
  It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.
  ☆58Updated 3 years ago
• sw33tLie / bcscope
  Get the scope of your bugcrowd programs
  ☆67Updated 4 years ago
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆81Updated 3 years ago
• thelikes / gwdomains
  sub domain wild card filtering tool
  ☆41Updated 5 years ago
• Rhynorater / reports
  ☆59Updated 10 months ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆71Updated 3 years ago
• JR0ch17 / rdse
  Extracts subdomains from a specified domain using https://recon.dev.
  ☆16Updated 4 years ago
• emadshanab / Scan-Apple-ASN-for-vulnerabilities-and-leave-no-port
  ☆44Updated 3 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆65Updated 4 years ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆91Updated 2 months ago
• pry0cc / subgen
  A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!
  ☆86Updated 5 years ago
• AdmiralGaust / bountyRecon
  Bash script to automate Bug Bounty Reconnaissance
  ☆38Updated 4 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 3 years ago
• Healdb / Gather
  URL Screenshot Utility
  ☆27Updated last year
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆66Updated 2 years ago
• ghostlulzhacks / s3brute
  s3 brute force tool
  ☆44Updated 4 years ago
• bonino97 / LemonBooster-v2
  Reestructured LemonBooster.
  ☆47Updated 9 months ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• Tanmay-N / CORS-Scanner
  ☆32Updated 4 years ago
• Cgboal / exclude-cdn
  Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin
  ☆44Updated 2 years ago
• Sajibekanti / Bug_Bounty_List
  Day by day Lots of Newbie Come into bug Bounty They ask Social Site about Bug Bounty Site, So That's why I open My Hunted All Site.
  ☆31Updated 4 years ago
• sayaanalam / CORS-EXPLOIT
  ☆38Updated 4 years ago
• Damian89 / simple-oob-scanner
  Simple tool to test for SSRF/OOB HTTP Read within the Path of a request
  ☆30Updated 5 years ago
• gwen001 / myrecon.py
  My recon script
  ☆50Updated 5 years ago
• sw33tLie / ugly-scripts
  A collection of scripts for bug-bounty related stuff
  ☆38Updated 4 years ago
• Naategh / dom-red
  Small script to check a list of domains against open redirect vulnerability
  ☆27Updated 3 years ago