Alternatives and similar repositories for recon

Users that are interested in recon are comparing it to the libraries listed below

• dwisiswant0 / bounty-targets-alert
  It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.
  ☆58Updated 3 years ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆47Updated 2 years ago
• samirettali / dumpcn
  Get all the CNs from a list of domains
  ☆46Updated 3 years ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆59Updated 3 years ago
• gwen001 / myrecon.py
  My recon script
  ☆50Updated 5 years ago
• Sicks3c / Reconizer
  ☆38Updated 4 years ago
• sw33tLie / ugly-scripts
  A collection of scripts for bug-bounty related stuff
  ☆39Updated 4 years ago
• ameenmaali / endpointdiff
  Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.
  ☆41Updated 5 years ago
• yashrs / Hackerone_Private_Hacktivity_Chrome_Extention
  ☆20Updated 4 years ago
• joefizz / autofindomain
  ☆24Updated 4 years ago
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆82Updated 3 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆61Updated 4 years ago
• BountyStrike / Emissary
  Send notifications on different channels such as Slack, Telegram, Discord etc.
  ☆39Updated 2 years ago
• xElkomy / Workflow-Bug-Bounty
  My Tools For Bug Bounty
  ☆66Updated 10 months ago
• thelikes / gwdomains
  sub domain wild card filtering tool
  ☆41Updated 5 years ago
• 1ndianl33t / 1ndiList
  Recon Custom WordList Ganerator
  ☆58Updated 5 years ago
• Cgboal / exclude-cdn
  Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin
  ☆45Updated 2 years ago
• cybercdh / h2i
  Converts a hostname (or URI) to IP address using your local resolver
  ☆26Updated last year
• ethicalhackingplayground / linkJS
  ☆56Updated 4 years ago
• AlfredBerg / dnsline
  Tool for making it easy to collect dns results from the CLI
  ☆40Updated 11 months ago
• melbadry9 / SSLEnum
  Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)
  ☆43Updated 6 months ago
• mzfr / takeover
  A tool for testing subdomain takeover possibilities at a mass scale.
  ☆49Updated 4 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆70Updated 5 years ago
• In3tinct / Taken
  Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.
  ☆92Updated 3 weeks ago
• osamahamad / Interesting-Things
  Single-WebApp-Target essentials testing methodology tool starting at recon-information gathering for the juicy stuff ended up in exploita…
  ☆23Updated 4 years ago
• emadshanab / 971-MB-content_discovery_wordlist
  Collection of content discovery wordlists in one wordlist.
  ☆38Updated 3 years ago
• 1ndianl33t / 1ndi-hacks
  Bug Bounty Tools
  ☆34Updated 5 years ago
• cqsd / daily-commonspeak2
  commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …
  ☆41Updated 4 years ago
• nikhil1232 / Bucket-Flaws
  Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations
  ☆58Updated 5 years ago
• honoki / tools
  A collection of simple tools and poc-builders
  ☆39Updated 2 weeks ago