Alternatives and similar repositories for CloudRecon

Users that are interested in CloudRecon are comparing it to the libraries listed below

• g0ldencybersec / gungnir
  CT Log Scanner
  ☆499Updated 2 weeks ago
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆711Updated last month
• redhuntlabs / BucketLoot
  BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…
  ☆438Updated 2 weeks ago
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆744Updated 2 years ago
• jthack / ffufai
  AI-powered ffuf wrapper
  ☆633Updated last month
• attacksurge / ax
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbit…
  ☆700Updated 2 weeks ago
• g0ldencybersec / sus_params
  ☆205Updated last year
• edoardottt / csprecon
  Discover new target domains using Content Security Policy
  ☆498Updated last week
• bebiksior / EvenBetter
  EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎
  ☆159Updated 2 months ago
• rs-loves-bugs / xsshunter
  ☆178Updated 4 months ago
• trufflesecurity / xsshunter
  ☆533Updated last month
• hakluke / hakip2host
  hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.
  ☆453Updated 3 years ago
• Alevsk / rmm
  Recon MindMap (RMM)
  ☆168Updated last year
• g0ldencybersec / Caduceus
  ☆166Updated last year
• hakluke / haktrails
  Golang client for querying SecurityTrails API data
  ☆578Updated 2 years ago
• MandConsultingGroup / porch-pirate
  Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitati…
  ☆442Updated last year
• Escape-Technologies / graphql-wordlist
  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
  ☆454Updated 2 years ago
• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆246Updated 2 years ago
• projectdiscovery / tldfinder
  A streamlined tool for discovering private TLDs for security research.
  ☆233Updated last week
• jhaddix / awsScrape
  A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
  ☆237Updated 2 years ago
• midoxnet / mapperplus
  MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
  ☆286Updated last year
• w9w / JSA
  Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.
  ☆558Updated 10 months ago
• francisconeves97 / jxscout
  jxscout superpowers JavaScript analysis for security researchers
  ☆327Updated 3 months ago
• MayankPandey01 / Jira-Lens
  Fast and customizable vulnerability scanner For JIRA written in Python
  ☆345Updated last year
• Invicti-Security / brainstorm
  A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
  ☆378Updated last year
• xnl-h4ck3r / urless
  De-clutter a list of URLs
  ☆378Updated 3 months ago
• az7rb / crt.sh
  Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.
  ☆258Updated last year
• xnl-h4ck3r / XnlReveal
  A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…
  ☆422Updated 2 months ago
• xnl-h4ck3r / knoxnl
  This is a python wrapper around the amazing KNOXSS API by Brute Logic
  ☆277Updated last week
• AggressiveUser / AllForOne
  AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,
  ☆731Updated last year