Alternatives and similar repositories for recon

Users that are interested in recon are comparing it to the libraries listed below

• dwisiswant0 / bounty-targets-alert
  It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.
  ☆59Updated 3 years ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆47Updated 2 years ago
• Sicks3c / Reconizer
  ☆38Updated 5 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆59Updated 4 years ago
• samirettali / dumpcn
  Get all the CNs from a list of domains
  ☆45Updated 4 years ago
• yashrs / Hackerone_Private_Hacktivity_Chrome_Extention
  ☆19Updated 4 years ago
• gwen001 / myrecon.py
  My recon script
  ☆50Updated 5 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆61Updated 4 years ago
• melbadry9 / SSLEnum
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆42Updated last month
• Cgboal / exclude-cdn
  Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin
  ☆45Updated 2 years ago
• sw33tLie / ugly-scripts
  A collection of scripts for bug-bounty related stuff
  ☆39Updated 5 years ago
• ameenmaali / endpointdiff
  Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.
  ☆41Updated 5 years ago
• ethicalhackingplayground / linkJS
  ☆57Updated 5 years ago
• emadshanab / Scan-Apple-ASN-for-vulnerabilities-and-leave-no-port
  ☆44Updated 4 years ago
• In3tinct / Taken
  Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.
  ☆93Updated 5 months ago
• 1ndianl33t / 1ndiList
  Recon Custom WordList Ganerator
  ☆58Updated 5 years ago
• BountyStrike / Emissary
  Send notifications on different channels such as Slack, Telegram, Discord etc.
  ☆39Updated 2 years ago
• joefizz / autofindomain
  ☆24Updated 4 years ago
• 0xsapra / fuzzparam
  ☆59Updated 4 years ago
• bp0lr / wurl
  A tool to test working urls.
  ☆43Updated 5 years ago
• AlfredBerg / dnsline
  Tool for making it easy to collect dns results from the CLI
  ☆40Updated last year
• 0xrishabh / websy
  Keep track of changes in website with WEBSY
  ☆35Updated 2 years ago
• thelikes / gwdomains
  sub domain wild card filtering tool
  ☆40Updated 5 years ago
• dwisiswant0 / continuous-nuclei
  Running nuclei Continuously
  ☆57Updated 3 years ago
• sayaanalam / CORS-EXPLOIT
  ☆38Updated 5 years ago
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆63Updated 5 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆40Updated 5 years ago
• cqsd / daily-commonspeak2
  commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …
  ☆40Updated 4 years ago
• honoki / tools
  A collection of simple tools and poc-builders
  ☆39Updated 4 months ago