edoardottt / csprecon
Discover new target domains using Content Security Policy
☆416Updated last week
Alternatives and similar repositories for csprecon:
Users that are interested in csprecon are comparing it to the libraries listed below
- Gotator is a tool to generate DNS wordlists through permutations.☆473Updated 2 years ago
- De-clutter a list of URLs☆335Updated 5 months ago
- CT Log Scanner☆345Updated 2 weeks ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆443Updated 2 years ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆632Updated last year
- ☆479Updated 11 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆65Updated 11 months ago
- Small tool to Grab subdomains using Shodan api.☆435Updated 5 months ago
- Golang client for querying SecurityTrails API data☆551Updated last year
- Generate tens of thousands of subdomain combinations in a matter of seconds☆268Updated last year
- Automated learning of regexes for DNS discovery☆364Updated 2 years ago
- Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.☆207Updated this week
- ☆436Updated 2 months ago
- Filter and enrich a list of subdomains by level☆203Updated last year
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.☆237Updated 2 months ago
- ☆240Updated 3 years ago
- Scrape domain names from SSL certificates of arbitrary hosts☆641Updated last year
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆287Updated last year
- Fast and customizable subdomain wordlist generator using DSL☆799Updated this week
- A fast and minimal JS endpoint extractor☆348Updated 5 months ago
- An Automated Subdomain Enumeration Tool☆260Updated 6 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆627Updated this week
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆260Updated 2 weeks ago
- Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.☆217Updated 7 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆310Updated 5 months ago
- A streamlined tool for discovering private TLDs for security research.☆188Updated last week
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆301Updated last month
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆372Updated last week
- bash script for Subdomain Enumeration☆364Updated 2 months ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382Updated last year