devsecboy / DomainRecon
Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for uphost and Run Masscan to grap CNAME entries, take the screenshot of all the found subdomains using WebScreeShot and more...
☆156Updated 10 months ago
Alternatives and similar repositories for DomainRecon:
Users that are interested in DomainRecon are comparing it to the libraries listed below
- A tool to hunt for publicly accessible DigitalOcean Spaces☆155Updated 5 years ago
- Local File Inclusion Exploitation Tool (mirror)☆123Updated 8 years ago
- Fast subdomains enumeration tool for penetration testers☆117Updated 6 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆137Updated 4 years ago
- XSS Hunter Burp Plugin☆149Updated 6 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆220Updated 2 years ago
- Feed the tool a .nessus file and it will automatically get you MSF shell☆235Updated 2 years ago
- Pillage a git repo found in an accessible web root☆61Updated 13 years ago
- A tool to generate media files with malicious metadata☆124Updated 6 years ago
- Some scripts and exploits☆144Updated 6 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆383Updated 4 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆254Updated 9 months ago
- PoC for an adaptive parallelised DNS prober☆108Updated 2 years ago
- A DB of known Web Application Admin URLS, Username/Password Combos and Exploits☆153Updated 9 years ago
- Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS☆83Updated 2 years ago
- Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account ha…☆169Updated 7 years ago
- ☆120Updated 7 years ago
- A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any yea…☆80Updated 7 years ago
- ☆206Updated 3 years ago
- An interactive OOB XXE data exfiltration tool☆91Updated 7 years ago
- locate and attack Lync/Skype for Business☆335Updated 5 months ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆133Updated last year
- Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!☆103Updated 6 years ago
- A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status☆89Updated 4 years ago
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆226Updated 6 years ago
- A wrapper for Nmap to quickly run network scans☆145Updated 4 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆306Updated 6 years ago
- Powerful Visual Subdomain Enumeration at the Click of a Mouse☆138Updated 5 years ago
- A Metasploit auto auxiliary script☆103Updated 2 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆214Updated 5 months ago