Alternatives and similar repositories for own-the-recon

Users that are interested in own-the-recon are comparing it to the libraries listed below

• yasinS / bug-bounty-reference
  Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
  ☆37Updated 7 years ago
• crawl3r / PortswiggerXSS
  gathers the XSS cheatsheet payloads and creates a usable wordlist
  ☆72Updated 4 years ago
• plenumlab / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆39Updated 5 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 6 years ago
• physics-sec / DetectCrossOriginMessaging
  This Burp extension helps you to find usages of postMessage and recvMessage
  ☆15Updated 5 years ago
• momenbasel / subScreen
  a JS tool that let you take screenshot of many hosts.
  ☆13Updated 5 years ago
• xYantix / Notes
  ☆14Updated 5 years ago
• maK- / scanomaly-2years
  This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping
  ☆48Updated 5 years ago
• TROUBLE-1 / shoping_site
  dummy shopping site for whitebox pentestig
  ☆9Updated 2 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆76Updated 5 years ago
• err0rr / SSTI
  ☆38Updated 5 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 4 years ago
• fellchase / flumberboozle
  Suite of programs meant to aid in bug hunting and security assessments
  ☆77Updated 5 years ago
• gwen001 / BBstats
  Bug Bounty statistics tool.
  ☆32Updated 2 years ago
• hoodoer / Top-Port-Slicer
  Python script to give you subsets of the nmap "top-ports". For example, I want the 10th to 100th most common TCP ports. Spits out a comma…
  ☆17Updated 5 years ago
• r00tgate / bugbounty101
  An entry level resource to learning bug bounty.
  ☆27Updated 7 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆87Updated 4 years ago
• lc / hacks
  Repo of useful scripts
  ☆104Updated 5 years ago
• BBerastegui / bucket-decloaker
  A simple tool to decloak/expose the bucket name behind a domain.
  ☆22Updated 5 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆63Updated 8 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆109Updated 9 years ago
• random-robbie / open-redirect
  Open Redirect Finder.
  ☆50Updated last year
• random-robbie / cloud-cidr
  AWS,AZURE,GOOGLE CLOUD IP CIDRS
  ☆48Updated 3 years ago
• Droidzzzio / Learning-Hub
  ☆19Updated 4 years ago
• ettic-team / EndpointFinder-Burp
  ☆32Updated 6 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 6 years ago
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 7 years ago
• dsopas / XSS-oneliner-payload
  Compilation of JavaScript XSS oneliners payloads that rocks your nuts!
  ☆25Updated 8 years ago
• fadyosman / SAMLExtractor
  A tool that can take a URL or list of URL and prints back SAML consume URL.
  ☆36Updated 6 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago