MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
☆1,021Jul 23, 2024Updated last year
Alternatives and similar repositories for magicRecon
Users that are interested in magicRecon are comparing it to the libraries listed below
Sorting:
- Automation Recon tool which works with Large & Medium scopes. It performs a lot of tasks and gets back all the results in separated files…☆684Jul 15, 2024Updated last year
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆802Jul 4, 2023Updated 2 years ago
- Automation for javascript recon in bug bounty.☆1,069Sep 9, 2023Updated 2 years ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,339Jun 27, 2024Updated last year
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆970Dec 8, 2021Updated 4 years ago
- oneliner commands for bug bounties☆461Jul 25, 2022Updated 3 years ago
- Open Redirection Analyzer☆812Mar 5, 2023Updated 2 years ago
- A collection of awesome one-liner scripts especially for bug bounty tips.☆3,077Jul 29, 2024Updated last year
- A fast DOM based XSS vulnerability scanner with simplicity.☆852Sep 30, 2022Updated 3 years ago
- A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.☆921Nov 19, 2025Updated 3 months ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,039Aug 23, 2025Updated 6 months ago
- Making Favicon.ico based Recon Great again !☆1,266Aug 29, 2023Updated 2 years ago
- A fuzzer for detecting open redirect vulnerabilities☆782Jul 1, 2024Updated last year
- Subdomain and target enumeration tool built for offensive security testing☆936Jun 19, 2024Updated last year
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆7,259Updated this week
- 403/401 Bypass Methods + Bash Automation + Your Support ;)☆1,573Jun 6, 2022Updated 3 years ago
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,524Jan 15, 2026Updated last month
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens…☆5,208Jan 31, 2026Updated 3 weeks ago
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙☆1,820Jun 9, 2024Updated last year
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆3,010Jun 24, 2024Updated last year
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.☆1,851May 20, 2024Updated last year
- A tool to check a bunch of URLs that contain reflecting params.☆598Aug 4, 2024Updated last year
- ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )☆686Updated this week
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,851Updated this week
- Rockyou for web fuzzing☆3,023Feb 11, 2026Updated 2 weeks ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,543Feb 7, 2026Updated 2 weeks ago
- BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial …☆1,494Jan 29, 2021Updated 5 years ago
- The fastest dork scanner written in Go.☆1,273Feb 4, 2024Updated 2 years ago
- Automating XSS using Bash☆362Jan 27, 2026Updated last month
- A fast tool to scan CRLF vulnerability written in Go☆1,519Updated this week
- A repository that includes all the important wordlists used while bug hunting.☆1,378Mar 11, 2023Updated 2 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,401Sep 13, 2024Updated last year
- Subdomain takeover vulnerability checker☆1,519Sep 10, 2024Updated last year
- i will upload more templates here to share with the comunity.☆567Apr 17, 2024Updated last year
- BBT - Bug Bounty Tools (examples💡)☆1,881Apr 5, 2024Updated last year
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,818Aug 20, 2025Updated 6 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆975Jan 12, 2024Updated 2 years ago
- Fetches javascript file from a list of URLS or subdomains.☆835Jul 22, 2025Updated 7 months ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,382May 26, 2024Updated last year