righettod / website-passive-reconnaissance

Related projects ⓘ

Alternatives and complementary repositories for website-passive-reconnaissance

• redhuntlabs / Log4JHunt
  An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.
  ☆43Updated 2 years ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆57Updated last year
• geeknik / nuclei-template-generator
  A simple tool which makes creating nuclei templates even easier.
  ☆36Updated 4 months ago
• darklotuskdb / SSTI-XSS-Finder
  XSS Finder Via SSTI
  ☆54Updated last year
• OdinF13 / Bug-Bounty-Scripts
  Script for Bug Bounty
  ☆28Updated 3 years ago
• muffyhub / Mindmaps
  ☆19Updated 3 years ago
• 0xAkashsky / sub-scout
  Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
  ☆35Updated last year
• trickest / safe-harbour
  security.txt collection of most popular world-wide domains
  ☆51Updated last year
• 1ZRR4H / CVE-2021-26084
  Atlassian Confluence CVE-2021-26084 one-liner mass checker
  ☆30Updated 3 years ago
• redhuntlabs / Hunt4Spring
  A "Spring4Shell" vulnerability scanner.
  ☆50Updated 2 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆38Updated 2 years ago
• luisfontes19 / CSRFER
  Tool to generate csrf payloads based on vulnerable requests
  ☆62Updated 4 years ago
• ihebski / db
  Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]
  ☆28Updated 3 years ago
• webemin / nistrich
  nistrich allows you to discover CVEs and their severities belong to IP addresses
  ☆13Updated last year
• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆48Updated 2 years ago
• chopicalqui / TurboDataMiner
  The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of informatio…
  ☆54Updated last year
• carlospolop / Pastos
  ☆46Updated 2 years ago
• daffainfo / my-nuclei-templates
  Some contributions in the nuclei-templates repository
  ☆55Updated 2 years ago
• RxXwx3x / OSWE
  ☆19Updated 3 years ago
• VitthalS / ivna
  Intentionally Vulnerable Nodejs Application & APIs
  ☆22Updated 2 years ago
• gotr00t0day / F5-BIG-IP-Scanner
  F5 BIG-IP Scanner scans for servers on shodan and checks to see if they are vulnerable.
  ☆17Updated last year
• Ravaan21 / Chandrahasa
  A solid recon tool I use personally.
  ☆30Updated last year
• haqqibrahim / Sling-Shot-R3con
  🚀 Sling Shot R3con: Automate Your Bug Bounty and Pentest Reconnaissance with Project Discovery tools 🎯
  ☆24Updated last year
• EasyRecon / wappaGo
  ☆52Updated 6 months ago
• Dheerajmadhukar / karma_v1
  KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…
  ☆58Updated 3 years ago
• bbhunter / attack-tools
  A set of tools, procedures, and playbooks for performing bug bounties
  ☆15Updated 5 years ago
• honoki / bbrf-burp-plugin
  A BurpSuite plugin for BBRF
  ☆24Updated 2 years ago
• AlfredBerg / dnsline
  Tool for making it easy to collect dns results from the CLI
  ☆39Updated 2 months ago