Alternatives and similar repositories for dnsrecon

Users that are interested in dnsrecon are comparing it to the libraries listed below

• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,461Updated last week
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,854Updated 3 years ago
• blechschmidt / massdns
  A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
  ☆3,440Updated 2 months ago
• mschwager / fierce
  A DNS reconnaissance tool for locating non-contiguous IP space.
  ☆1,729Updated last year
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,444Updated 8 months ago
• guelfoweb / knock
  Knock Subdomain Scan
  ☆4,063Updated 4 months ago
• TheRook / subbrute
  A DNS meta-query spider that enumerates DNS records, and subdomains.
  ☆3,468Updated 3 years ago
• digininja / CeWL
  CeWL is a Custom Word List Generator
  ☆2,390Updated 11 months ago
• scipag / vulscan
  Advanced vulnerability scanning with Nmap NSE
  ☆3,672Updated last year
• lanjelot / patator
  Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
  ☆3,777Updated 4 months ago
• rbsec / dnscan
  ☆1,225Updated 9 months ago
• x90skysn3k / brutespray
  Bruteforcing from various scanner output - Automatically attempts default creds on found services.
  ☆2,302Updated 3 weeks ago
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,924Updated last week
• ShawnDEvans / smbmap
  SMBMap is a handy SMB enumeration tool
  ☆1,958Updated 7 months ago
• vulnersCom / nmap-vulners
  NSE script based on Vulners.com API
  ☆3,344Updated last week
• SpiderLabs / Responder
  Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…
  ☆4,758Updated 5 years ago
• lgandx / Responder
  Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…
  ☆6,067Updated last month
• fwaeytens / dnsenum
  dnsenum is a perl script that enumerates DNS information
  ☆659Updated 5 years ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆2,003Updated 2 years ago
• xmendez / wfuzz
  Web application fuzzer
  ☆6,297Updated last year
• urbanadventurer / WhatWeb
  Next generation web scanner
  ☆6,108Updated this week
• danielmiessler / RobotsDisallowed
  A curated list of the most common and most interesting robots.txt disallowed directories.
  ☆1,474Updated 3 years ago
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,902Updated 3 weeks ago
• ivre / ivre
  Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…
  ☆3,818Updated this week
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,533Updated 2 years ago
• ztgrace / changeme
  A default credential scanner.
  ☆1,498Updated 2 months ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,370Updated 7 months ago
• iagox86 / dnscat2
  ☆3,715Updated last year
• codingo / NoSQLMap
  Automated NoSQL database enumeration and web application exploitation tool.
  ☆3,168Updated last month
• commixproject / commix
  Automated All-in-One OS Command Injection Exploitation Tool.
  ☆5,470Updated this week