nahamsec / lazyrecon
This script is intended to automate your reconnaissance process in an organized fashion
β1,959Updated 3 years ago
Alternatives and similar repositories for lazyrecon:
Users that are interested in lazyrecon are comparing it to the libraries listed below
- A script to set up a quick Ubuntu 17.10 x64 box with tools I use.β1,192Updated 10 months ago
- BBT - Bug Bounty Tools (examplesπ‘)β1,799Updated last year
- Take a list of domains and probe for working HTTP and HTTPS serversβ2,996Updated 10 months ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the acβ¦β1,723Updated last year
- Fetch many paths for many hosts - without killing the hostsβ1,645Updated last year
- XSS payloads designed to turn alert(1) into P1β1,362Updated last year
- β2,261Updated last year
- Generates permutations, alterations and mutations of subdomains and then resolves themβ2,403Updated 4 months ago
- Automated & Manual Wordlists provided by Assetnoteβ1,432Updated 9 months ago
- Subdomain Takeover tool written in Goβ1,966Updated last year
- A collection of tools to perform searches on GitHub.β1,410Updated 2 years ago
- A collection of hacks and one-off scriptsβ2,278Updated last month
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ2,712Updated 10 months ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug huβ¦β2,153Updated 10 months ago
- The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.β1,206Updated 3 months ago
- A curated list of amazingly awesome Burp Extensionsβ3,166Updated 2 months ago
- Find domains and subdomains related to a given domainβ3,256Updated 11 months ago
- The Swiss Army knife for automated Web Application Testingβ2,231Updated last year
- Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.β1,245Updated 3 weeks ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scannerβ1,813Updated 3 years ago
- "Can I take over XYZ?" β a list of services and how to claim (sub)domains with dangling DNS records.β5,147Updated 3 months ago
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single locationβ1,254Updated 4 years ago
- Rockyou for web fuzzingβ2,789Updated last week
- The XSS Hunter service - a portable version of XSSHunter.comβ1,522Updated 2 years ago
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for β¦β3,322Updated this week
- Subdomain takeover vulnerability checkerβ1,197Updated 8 months ago
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, alβ¦β2,158Updated 2 years ago
- A multi-platform bug bounty toolkit that can be installed on Debian/Ubuntu or set up with Docker.β1,126Updated last year
- Automatic SSRF fuzzer and exploitation toolβ3,188Updated 2 months ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grepβ1,297Updated 7 months ago