A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
☆397Apr 17, 2020Updated 5 years ago
Alternatives and similar repositories for chomp-scan
Users that are interested in chomp-scan are comparing it to the libraries listed below
Sorting:
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆450Jul 21, 2020Updated 5 years ago
- Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.☆294Nov 30, 2019Updated 6 years ago
- Simple shell script for automated domain recognition with some tools☆304Nov 11, 2020Updated 5 years ago
- Trying to make automated recon for bug bounties☆255May 3, 2021Updated 4 years ago
- A highly configurable Framework for easy automated web scanning☆381Jul 13, 2020Updated 5 years ago
- Pentest/BugBounty progress control with scanning modules☆281Jul 16, 2020Updated 5 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆303Feb 12, 2023Updated 3 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,027Feb 5, 2021Updated 5 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,774Apr 26, 2024Updated last year
- A tool to link a domain with registered organisation names and emails, to other domains.☆847May 16, 2024Updated last year
- Multiprocessing(Parallel)Subdomain Detect Script☆329Jan 28, 2024Updated 2 years ago
- An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.☆400Mar 24, 2021Updated 4 years ago
- Multi Tool Subdomain Enumeration☆723Apr 11, 2021Updated 4 years ago
- rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessments☆250Oct 15, 2019Updated 6 years ago
- A powerful target reconnaissance framework powered by graph theory.☆419Oct 21, 2022Updated 3 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆367Jul 23, 2022Updated 3 years ago
- An hourly updated list of subdomains gathered from certificate transparency logs☆349Oct 13, 2021Updated 4 years ago
- You can read the writeup on this script here☆274Jul 12, 2020Updated 5 years ago
- The project contains multiple shell scripts for automating the tasks during recon.☆174Aug 21, 2023Updated 2 years ago
- ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.☆727May 6, 2022Updated 3 years ago
- A Network Enumeration and Attack Toolset for Windows Active Directory Environments.☆247Jun 19, 2024Updated last year
- You can read the writeup on this script here☆192Sep 30, 2021Updated 4 years ago
- My Recon Automation☆194May 28, 2021Updated 4 years ago
- A simple SSRF-testing sheriff written in Go☆336Oct 31, 2024Updated last year
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,285Aug 18, 2025Updated 6 months ago
- A Tool for Domain Flyovers☆5,906May 22, 2022Updated 3 years ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆223Jul 10, 2020Updated 5 years ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,477Jan 9, 2025Updated last year
- A better version of my xssfinder tool - scans for different types of xss on a list of urls.☆187Aug 3, 2019Updated 6 years ago
- Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna c…☆284Oct 14, 2021Updated 4 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆469Nov 14, 2019Updated 6 years ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,339Jun 27, 2024Updated last year
- Fast directory scanning and scraping tool☆630Feb 5, 2026Updated 3 weeks ago
- The Swiss Army knife for automated Web Application Testing☆2,323May 8, 2024Updated last year
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆1,053Jan 3, 2025Updated last year
- Linux post exploitation framework written in bash designed to assist red teams in persistence, reconnaissance, privilege escalation and l…☆542Apr 14, 2021Updated 4 years ago
- Recursive DNS Subdomain Enumerator with dead-end avoidance system (BETA)☆146Apr 9, 2021Updated 4 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆305Oct 14, 2018Updated 7 years ago
- Making Favicon.ico based Recon Great again !☆1,266Aug 29, 2023Updated 2 years ago