Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for recon
recon
x
617 search results found
Grapx
⭐
33
grapX will iterate through the URLs and grep the endpoints with all possible extensions.
Dirbpy
⭐
33
This is the new version of dirb in python
Learn
⭐
33
RECON learn: a free, open platform for training material on epidemics analysis
Burp Ntlm Challenge Decoder
⭐
33
Burp extension to decode NTLM SSP headers and extract domain/host information
Icu
⭐
33
An Extended, Modulair, Host Discovery Framework
Research
⭐
32
❄️ Research project for SubFinder core API V2
Thorndyke
⭐
32
Lightweight username enumeration tool that checks the availability of a specified username on over 200 websites.
Huntthebug
⭐
32
Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack > URL + JavaScript Scan > Dir Brute Forcing > Open Port Check With Telegram Bot Notification
Subwalker
⭐
32
Simultaneously execute various subdomain enumeration tools and aggregate results.
H2buster
⭐
32
A threaded, recursive, web directory brute-force scanner over HTTP/2.
Mgwls
⭐
31
Combine words from two wordlist files and concatenate them with an optional delimiter
Sniffcon Ultimate Recon Dashboard For Bug Bounty And Pentesting
⭐
31
Sniffcon has a wide list of powerful online bug bounty tools which can be used to find security vulnerabilities.
Subdomain_recon
⭐
31
A subdomain reconnaissance scanner
Jamfproswitcher
⭐
31
A Mac utility that quickly switches between multiple Jamf Pro Server instances.
Goblob
⭐
30
A fast enumeration tool for publicly exposed Azure Storage blobs.
Norecon
⭐
30
recon小工具, 提供whois查询,dns查询,ip扫描,http快照一条龙服务
Easyrecon
⭐
30
Tool to automate recon
Rpcscan
⭐
29
RPCSCAN - A python tool to automate all the efforts that you put on finding the xmlrpc.php file on all of your target's subdomains and then finding the vulnerable methods and then finding the reports on hackerone and medium writeups.
D4v1d
⭐
29
Social-Media OSINT tool - gather info on users across multiple platforms; easily extensible by design. 📷
Grobackendwv
⭐
29
Ghost Recon Online Backend by Warranty Voider
Hydrarecon
⭐
28
All In One, Fast, Easy Recon Tool
Subdomain Enumeration Guide
⭐
28
This is a comprehensive Subdomain Enumeration Guide that traces back to my GitBook.
Fransrecon
⭐
28
Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated using Sublist3r.
Recon Ng Maltego
⭐
28
recon-ng Maltego local transform pack
Revwhoix
⭐
28
A simple utility to perform reverse WHOIS lookups using whoisxml API
Badfet
⭐
27
BADFET
O365chk
⭐
27
Simple Python tool to check if there is an Office 365 instance linked to a domain.
Recon2017
⭐
27
RECon 2017 IDA skin & color scheme
Reconmtl 2017
⭐
27
Recon materials
Red Team Tools
⭐
27
Reconness Agents
⭐
26
Reconness Agents Script
Linx
⭐
26
Reveals invisible links within JavaScript files
Chart Of Wordlist
⭐
26
Chart-Of-Wordlist helps to create your own custom wordlist. Also in one repository, you can find a list of awesome wordlist.
Google Search
⭐
26
Returns results from Google search.
Recon_methodology
⭐
26
recon from myerspective
Domaindouche
⭐
25
OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.
Js Finding
⭐
25
JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various extraction methods and provides additional options for file download and wordlists creation.
Crawleet
⭐
25
Web Recon & Exploitation Tool.
Unc0ver
⭐
25
Directory Fuzzer for Pentesting and Host Recon
Certcrunchy
⭐
25
Just a silly recon tool that uses data from SSL Certificates to find potential host names
Pollenisator
⭐
25
Collaborative pentest tool with highly customizable tools
Sub Z
⭐
25
A Complete SubDomain Enumeration Tool
Krakenrdi
⭐
24
Rapid Deployment Infrastructure for Red Teaming and Penetration Testing
Infosecbookmarks
⭐
24
Gorecon
⭐
24
Initiate external reconnaissance, parse Nessus xml reports and more.
Bounty.sh
⭐
24
simple bash script to earn bounties
Unhidens
⭐
24
Small DNS Recon utility, allows you to obtain some useful info about NS-servers placed behind relays, firewalls, etc.
Waybackrobots
⭐
24
Enumerate old versions of robots.txt paths using Wayback Machine for content discovery
Flydns
⭐
24
Related subdomains finder
Eden_guide_to_hacking
⭐
23
its quick to read, broadway guide to HACKING ~ for anyone to have grasp of important concepts and skills which makes up the knowledge base of a hacker
Asnap
⭐
23
asnap aims to render recon phase easier by providing updated data about which companies owns which ipv4 or ipv6 addresses and allows the user to automate initial port and service scanning.
Osint Viz Platform Reconvillage
⭐
23
The repository for Building visualisation platforms for OSINT data using open source solutions
Diffjs
⭐
23
Tool for monitoring changes in javascript files on WebApps for reconnaissance.
Reconhub.github.io
⭐
23
Official website for RECON - The R Epidemics CONsortium
Dotfinder
⭐
23
dotfinder is a python tool to enumerate subdomains.
Smog
⭐
22
A semi-automatic osint/recon framework.
Tvb Recon
⭐
22
Tools for creating full TVB models from individual anatomical scans
Getfortinetserialnumber
⭐
22
A Python script to extract the serial number of a remote Fortinet device.
Burnrecon
⭐
22
is a tool to automate and organize reconnaissance operations.
Makeoprgreatagain
⭐
22
OPR UserJS Collection
Gogetjs
⭐
21
a tool for extracting, searching, and saving JavaScript files (with optional headless browser)
Attackingad
⭐
21
This repo will contain slides and information from the Attacking Active Directory Hacking Series talks presented at SecKC.
Awesome Active Defense
⭐
21
an awesome list of active defense resources
Doubletap
⭐
21
A very loud but fast recon scan and pentest template creator for use in CTF's/OSCP/Hackthebox...
Openbugbounty Scrapper
⭐
21
This script scrapes the list of open Bug Bounty Programs from openbugbounty.org
Recon.cloud
⭐
21
recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to terminal.
Cdnrecon
⭐
21
CDNRECON is a tool that is designed to uncover the origin/backend IP behind a CDN's reverse proxy. It is written in Python3 and uses various techniques such as header analysis and DNS lookups to try and discover the origin IP of a website behind a CDN.
Active Ip
⭐
21
🕵️♂️🔍 A tool with several scanning techniques that extracts live IP addresses from a list of IP addresses or CIDR notations.
Beginner Bug Bounty Automation
⭐
21
Many script that can be modified according to your needs for Information Gathering and Asset discovery in Bug Bounty Hunting (Pull requests are welcome!)
Ctf Challenge
⭐
20
An attempt to unite CTF players and bug bounty hunters by sharing a binary that needs CTF-style attention.
Tsgctf
⭐
20
The full set of files that supported TSG CTF challenges
Lar
⭐
20
Light Armoured Recon is a python script designed to automate passive recon. It automates execution of TheHarvester, whois, Robtex.com, Builtwith.com, DNSrecon, metagoofil, & knockpy.
Submonit88r
⭐
20
Submonit88r is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains. It fetches subdomains from various sources [crtsh, hackertargetapi, anubis, alienvault, rappiddns, urlscan ] , saves them to a SQLite database, and can notify updates via Discord.
Web Exploitation Workflow
⭐
20
Web Exploitation Workflow for CTF Challenges
Urlrecon
⭐
20
📝 urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server
Interesting Things
⭐
20
Single-WebApp-Target essentials testing methodology tool starting at recon-information gathering for the juicy stuff ended up in exploitation.
Recon
⭐
20
Asynchronous messaging on tokio-rs
Rustywitness
⭐
20
A CLI tool for getting screenshots of URLs using headless chrome
Scavenger
⭐
20
Noobish Recon Automation
Geturrecon
⭐
20
All that entity matching, resolution, normalization, enhancement and reconciliation madness, but with a focus on data, not platforms.
Proviesec Bug Bounty Dorking Site Pbbds
⭐
19
This page should help you with the recon for security issues.
Fetchmeurls
⭐
19
A Tool for Bug Bounty Hunters that uses Passive and Active Techniques to fetch URLs as a strong Recon, so you can then create Attack Vectors (XSS, Nuclei, SQLi etc...)
Wikileaker
⭐
19
A WikiLeaks scraper inspired by the Datasploit module previously written in Python2. This script leverages pandas and Python3.
Recon
⭐
18
The RECON project creates library for Nios II Microcontroller System and Tool chain. The library includes a collection of hardware configurations and Arduino-style software APIs.
Brutelist
⭐
18
Brute List is an updated word list for brute-forcing the assets. This is not like a normal outdated word list. I have collected several lists from many resources and created them as a single list.
Metasploit_modules
⭐
18
My metasploit modules
Auto Recon Ng
⭐
18
Automated script to run all modules for a specified list of domains, netblocks or company name
Swaggerhole
⭐
18
A python3 script searching for secret on swaggerhub
Bountyreconv2
⭐
17
Framework to automate Bug Bounty Reconnaissance
Simplerecon
⭐
17
Simple Recon is just a simple bash script to automate my recon process.
Recondashboard
⭐
16
Dashboard containing various recon tools
Cyclegan Pytorch
⭐
16
Nuubi
⭐
16
Nuubi Tools (Information-ghatering|Scanner|Recon.)
Golookup
⭐
16
GoLookup is a simple tool written in GoLang, which looks for CNAME(s) ,A and AAAA Records , TXT Records , NameServer(s) / MX Record of any domain
Docker Secapps Driver
⭐
16
Webvulnerabilitywriteups
⭐
16
Subfree
⭐
16
Your subdomains are free for the taking - no API key, no mistaking! 🕺
Recon Ng_modules
⭐
16
Recon-ng modules that won't get accepted into the main distribution because of 3rd party dependencies.
R3con
⭐
16
Just some bash scripting to help your recon.
Lazyrecon
⭐
16
Subdomain discovery using Sublist3r, certspotter, crt.sh , censys and amass . Subdomain bruteforcing using Gobuster and Resolve hosts using tomnomnom's filter-resolved.
301-400 of 617 search results
< Previous
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.