Alternatives and similar repositories for ReconNotes:

Users that are interested in ReconNotes are comparing it to the libraries listed below

• Virdoexhunter / HowToHunt
  Some Tutorials and Things to Do while Hunting That Vulnerability.
  ☆73Updated 4 years ago
• dwisiswant0 / unew
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆120Updated 3 years ago
• ghsec / ghsec-jaeles-signatures
  Signatures for jaeles scanner by @j3ssie
  ☆116Updated 11 months ago
• sw33tLie / bcscope
  Get the scope of your bugcrowd programs
  ☆67Updated 4 years ago
• devanshbatham / awesome-bughunting-oneliners
  A list of Awesome Bughunting oneliners , collected from the various sources
  ☆65Updated last year
• 1ndianl33t / All-in-one_BugBounty_PDF_bundles
  ☆126Updated 4 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆84Updated 2 years ago
• gwen001 / bugbountytips
  Webapp to search tips on Twitter through #bugbountytips
  ☆71Updated 2 years ago
• BugBountyResources / targets
  A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…
  ☆99Updated 3 years ago
• dwisiswant0 / hinject
  Host Header Injection Checker
  ☆80Updated 3 years ago
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆177Updated 4 years ago
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆112Updated 3 years ago
• rotemreiss / uddup
  Urls de-duplication tool for better recon.
  ☆139Updated 8 months ago
• e11i0t4lders0n / Bugbounty-Resources
  ☆83Updated 3 years ago
• LuD1161 / HackingSimplified
  This is where I share code/material shown in my videos
  ☆74Updated last year
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆211Updated 3 years ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆65Updated 2 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆131Updated 4 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 3 years ago
• proabiral / Fresh-Resolvers
  List of Hourly Updated Fresh DNS resolvers
  ☆95Updated this week
• yavolo / eventlistener-xss-recon
  ☆139Updated 2 years ago
• KathanP19 / gaussrf
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆169Updated 4 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆193Updated 3 years ago
• clarkvoss / AEM-List
  ☆95Updated 3 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆62Updated last year
• Zarcolio / wwwordlist
  Wwwordlist is a wordlist generator for pentesters and bug bounty hunters. It extracts words from HTML, URLs, JS/HTTP/input variables, quo…
  ☆101Updated last year
• iustin24 / SSRF
  ☆34Updated 4 years ago
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆158Updated last year
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆157Updated 4 years ago