devsecboy / DomainRecon
Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for uphost and Run Masscan to grap CNAME entries, take the screenshot of all the found subdomains using WebScreeShot and more...
☆154Updated 4 months ago
Related projects: ⓘ
- Local File Inclusion Exploitation Tool (mirror)☆121Updated 7 years ago
- A tool to hunt for publicly accessible DigitalOcean Spaces☆154Updated 4 years ago
- ☆207Updated this week
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆136Updated 3 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆219Updated last year
- XSS Hunter Burp Plugin☆148Updated 6 years ago
- ☆119Updated 7 years ago
- Fast subdomains enumeration tool for penetration testers☆117Updated 5 years ago
- Dirbuster plugin for Burp Suite☆70Updated 7 years ago
- ☆115Updated this week
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆110Updated 5 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆130Updated last year
- Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS☆81Updated last year
- penetration testing scripts☆137Updated 5 years ago
- An interactive OOB XXE data exfiltration tool☆90Updated 7 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆210Updated 2 years ago
- PoC for an adaptive parallelised DNS prober☆107Updated last year
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆252Updated 3 months ago
- locate and attack Lync/Skype for Business☆330Updated 2 months ago
- A DB of known Web Application Admin URLS, Username/Password Combos and Exploits☆153Updated 9 years ago
- ☆61Updated this week
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆301Updated 5 years ago
- Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…☆101Updated last year
- Burp Suite extension to discover assets from HTTP response.☆217Updated 3 years ago
- Actarus is a custom tool for bug bounty☆75Updated 4 years ago
- ☆160Updated 6 years ago
- Scans a list of websites for Cloudfront or S3 Buckets☆104Updated 2 years ago
- Pillage a git repo found in an accessible web root☆59Updated 13 years ago
- Feed the tool a .nessus file and it will automatically get you MSF shell☆232Updated last year
- A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status☆89Updated 3 years ago