Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal
☆284Oct 14, 2021Updated 4 years ago
Alternatives and similar repositories for Gorecon
Users that are interested in Gorecon are comparing it to the libraries listed below
Sorting:
- Hunt down the secrets from the WebArchives for Fun and Profit☆163Dec 8, 2022Updated 3 years ago
- A Powerful Subdomain Takeover Tool☆963Oct 17, 2023Updated 2 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆397Apr 17, 2020Updated 5 years ago
- Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.☆294Nov 30, 2019Updated 6 years ago
- Trying to make automated recon for bug bounties☆255May 3, 2021Updated 4 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆174Nov 11, 2020Updated 5 years ago
- Simple shell script for automated domain recognition with some tools☆304Nov 11, 2020Updated 5 years ago
- 🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).☆297Oct 5, 2024Updated last year
- Making Favicon.ico based Recon Great again !☆1,266Aug 29, 2023Updated 2 years ago
- Subdomain and target enumeration tool built for offensive security testing☆936Jun 19, 2024Updated last year
- Multi Tool Subdomain Enumeration☆723Apr 11, 2021Updated 4 years ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆3,010Jun 24, 2024Updated last year
- The project contains multiple shell scripts for automating the tasks during recon.☆174Aug 21, 2023Updated 2 years ago
- Mass scan IPs for vulnerable services☆1,046Feb 17, 2022Updated 4 years ago
- Second-order subdomain takeover scanner☆405Aug 28, 2025Updated 6 months ago
- Web App bug hunting☆578Nov 26, 2025Updated 3 months ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Feb 19, 2021Updated 5 years ago
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆802Jul 4, 2023Updated 2 years ago
- ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.☆727May 6, 2022Updated 3 years ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆450Jul 21, 2020Updated 5 years ago
- My Recon Automation☆194May 28, 2021Updated 4 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,027Feb 5, 2021Updated 5 years ago
- Automation Recon tool which works with Large & Medium scopes. It performs a lot of tasks and gets back all the results in separated files…☆684Jul 15, 2024Updated last year
- A collection of hacks and one-off scripts☆2,424Mar 13, 2025Updated 11 months ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,339Jun 27, 2024Updated last year
- A tool that can help detect and takeover subdomains with dead DNS records☆773Jan 3, 2021Updated 5 years ago
- Pentest/BugBounty progress control with scanning modules☆281Jul 16, 2020Updated 5 years ago
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering…☆1,593Updated this week
- Wordlists for Bug Bounty☆23Aug 18, 2019Updated 6 years ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆223Jul 10, 2020Updated 5 years ago
- A highly configurable Framework for easy automated web scanning☆381Jul 13, 2020Updated 5 years ago
- ☆11May 15, 2020Updated 5 years ago
- A fuzzer for detecting open redirect vulnerabilities☆782Jul 1, 2024Updated last year
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.☆1,851May 20, 2024Updated last year
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆348Jun 17, 2023Updated 2 years ago
- bash scripting thing!☆193Nov 13, 2023Updated 2 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆303Feb 12, 2023Updated 3 years ago
- Running nuclei Continuously☆57Nov 11, 2022Updated 3 years ago
- You can read the writeup on this script here☆274Jul 12, 2020Updated 5 years ago