devsecboy / DomainRecon
Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for uphost and Run Masscan to grap CNAME entries, take the screenshot of all the found subdomains using WebScreeShot and more...
☆154Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for DomainRecon
- Local File Inclusion Exploitation Tool (mirror)☆122Updated 7 years ago
- A tool to hunt for publicly accessible DigitalOcean Spaces☆154Updated 4 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆135Updated 3 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆220Updated last year
- Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS☆81Updated last year
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆302Updated 6 years ago
- PoC for an adaptive parallelised DNS prober☆107Updated 2 years ago
- Pillage a git repo found in an accessible web root☆60Updated 13 years ago
- Fast subdomains enumeration tool for penetration testers☆117Updated 5 years ago
- XSS Hunter Burp Plugin☆148Updated 6 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆131Updated last year
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆225Updated 6 years ago
- A DB of known Web Application Admin URLS, Username/Password Combos and Exploits☆153Updated 9 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆110Updated 5 years ago
- Feed the tool a .nessus file and it will automatically get you MSF shell☆234Updated last year
- Actarus is a custom tool for bug bounty☆75Updated 5 years ago
- Everything you need to exploit overly permissive crossdomain.xml files☆87Updated 10 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆212Updated last month
- XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF,…☆76Updated 6 years ago
- ☆120Updated 7 years ago
- An interactive OOB XXE data exfiltration tool☆90Updated 7 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆253Updated 5 months ago
- Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!☆103Updated 6 years ago
- A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any yea…☆80Updated 6 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆383Updated 4 years ago
- A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status☆89Updated 4 years ago
- Powerful Visual Subdomain Enumeration at the Click of a Mouse☆137Updated 5 years ago