Alternatives and similar repositories for ReconNotes:

Users that are interested in ReconNotes are comparing it to the libraries listed below

• ghsec / ghsec-jaeles-signatures
  Signatures for jaeles scanner by @j3ssie
  ☆116Updated last year
• dwisiswant0 / unew
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆121Updated 3 years ago
• KathanP19 / gaussrf
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆170Updated 4 years ago
• Virdoexhunter / HowToHunt
  Some Tutorials and Things to Do while Hunting That Vulnerability.
  ☆73Updated 4 years ago
• 1ndianl33t / All-in-one_BugBounty_PDF_bundles
  ☆126Updated 4 years ago
• sw33tLie / bcscope
  Get the scope of your bugcrowd programs
  ☆67Updated 4 years ago
• BugBountyResources / targets
  A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…
  ☆99Updated 3 years ago
• gwen001 / bugbountytips
  Webapp to search tips on Twitter through #bugbountytips
  ☆71Updated 2 years ago
• devanshbatham / awesome-bughunting-oneliners
  A list of Awesome Bughunting oneliners , collected from the various sources
  ☆67Updated last year
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆177Updated 4 years ago
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆159Updated last year
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆84Updated 2 years ago
• rotemreiss / uddup
  Urls de-duplication tool for better recon.
  ☆139Updated 9 months ago
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆112Updated 3 years ago
• LuD1161 / HackingSimplified
  This is where I share code/material shown in my videos
  ☆74Updated last year
• maverickNerd / BugForaging
  This repo includes my analysis of some public reports.
  ☆57Updated 4 years ago
• jandersoncampelo / InfosecBookmarks
  ☆52Updated last year
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆210Updated 3 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆157Updated 4 years ago
• yavolo / eventlistener-xss-recon
  ☆139Updated 2 years ago
• dwisiswant0 / gf-secrets
  Secret and/or credential patterns used for gf.
  ☆241Updated 2 years ago
• xElkomy / Workflow-Bug-Bounty
  My Tools For Bug Bounty
  ☆66Updated 7 months ago
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆147Updated 4 years ago
• proabiral / Fresh-Resolvers
  List of Hourly Updated Fresh DNS resolvers
  ☆95Updated last week
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆65Updated 2 years ago
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Updated 4 years ago
• KingOfBugbounty / KingRecon_DOD
  ☆75Updated 11 months ago
• Raywando / 4xxbypass
  4xxbypass
  ☆67Updated 4 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago