Alternatives and similar repositories for Recon-tools

Users that are interested in Recon-tools are comparing it to the libraries listed below

• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• offhourscoding / recon
  Bug Bounty Recon Script
  ☆18Updated 4 years ago
• yesnet0 / bounty
  Misc bounty and vulndisc things
  ☆85Updated 4 years ago
• JR0ch17 / rdse
  Extracts subdomains from a specified domain using https://recon.dev.
  ☆16Updated 4 years ago
• In3tinct / Taken
  Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.
  ☆92Updated this week
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆81Updated 3 years ago
• emadshanab / Scan-Apple-ASN-for-vulnerabilities-and-leave-no-port
  ☆44Updated 3 years ago
• dwisiswant0 / bounty-targets-alert
  It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.
  ☆58Updated 3 years ago
• Damian89 / simple-oob-scanner
  Simple tool to test for SSRF/OOB HTTP Read within the Path of a request
  ☆30Updated 5 years ago
• ethicalhackingplayground / wordlistgen
  Generates target specific word lists for Fuzzing with fuff
  ☆111Updated 4 years ago
• Rhynorater / reports
  ☆60Updated last year
• ameenmaali / endpointdiff
  Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.
  ☆41Updated 5 years ago
• PatrikFehrenbach / amass-tools
  ☆108Updated 4 years ago
• Healdb / Elevate
  Horizontal Domain Discovery
  ☆76Updated 2 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 4 years ago
• sw33tLie / bcscope
  Get the scope of your bugcrowd programs
  ☆67Updated 4 years ago
• Raywando / 4xxbypass
  4xxbypass
  ☆67Updated 4 years ago
• vavkamil / bugbountytip.com
  Flask powered website to display tweets with a hashtag #bugbountytip
  ☆16Updated 5 years ago
• lc / DOD-Recon
  Recon for Department of Defense HackerOne program
  ☆45Updated 6 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆70Updated 4 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆109Updated 3 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆65Updated 4 years ago
• AdmiralGaust / bountyRecon
  Bash script to automate Bug Bounty Reconnaissance
  ☆38Updated 4 years ago
• sayaanalam / CORS-EXPLOIT
  ☆38Updated 4 years ago
• melbadry9 / ScanApi
  Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.
  ☆38Updated 2 years ago
• Cgboal / exclude-cdn
  Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin
  ☆44Updated 2 years ago
• pry0cc / subgen
  A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!
  ☆87Updated 5 years ago
• 1ndianl33t / 1ndiList
  Recon Custom WordList Ganerator
  ☆58Updated 5 years ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆47Updated 2 years ago
• thelikes / gwdomains
  sub domain wild card filtering tool
  ☆41Updated 5 years ago