GofingerprintGoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.
Defaultcreds Cheat SheetOne place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
GreconYour Google Recon is Now Automated
CorsmeCross Origin Resource Sharing MisConfiguration Scanner
HackeronedbThe unofficial HackerOne disclosure Timeline
GxssA tool to check a bunch of URLs that contain reflecting params.
Dns DiscoveryDNS-Discovery is a multithreaded subdomain bruteforcer.
BulwarkAn organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
UddupUrls de-duplication tool for better recon.
Nuclei TemplatesCommunity curated list of templates for the nuclei engine to find security vulnerabilities.
ArlARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Gf SecretsSecret and/ credential patterns used for gf.
S3scannerScan for open AWS S3 buckets and dump the contents
Aws ScannerScans a list of websites for Cloudfront or S3 Buckets
Pentest GuidePenetration tests guide based on OWASP including test cases, resources and examples.
AcamarA Python3 based single-file subdomain enumerator
CspGiven a list of hosts, this small utility fetches all whitelisted domains from the hosts' CSPs.
Webhackersweapons⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
SubjackSubdomain Takeover tool written in Go
GitgrabergitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
FindsploitFind exploits in local and online databases instantly
ResourcesA Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
S3reverseThe format of various s3 buckets is convert in one format. for bugbounty and security testing.
ZileExtract API keys from file or url using by magic of python and regex.
Rfd CheckerRFD Checker - security CLI tool to test Reflected File Download issues
Differerdifferer finds how URLs are parsed by different languages in order to help bug hunters break filters
JaelesThe Swiss Army knife for automated Web Application Testing
Pentesting BibleLearn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
HaliveA fast http and https prober, to check which URLs are alive
DrishtiA fast HTTP Response status checker implemented in Python3
BurpbountyBurp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
AwsbucketdumpSecurity Tool to Look For Interesting Files in S3 Buckets
EzxssezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
Legal Bug Bounty#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
BrutexAutomatically brute force all services running on a target.
Tiny Xss PayloadsA collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
TakeoverA tool for testing subdomain takeover possibilities at a mass scale.
BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Urlhuntera recon tool that allows searching on URLs that are exposed via shortener services
SubdomainizerA tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
Dalfox🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
PrivescA collection of Windows, Linux and MySQL privilege escalation scripts and exploits.
GospiderGospider - Fast web spider written in Go
ParamspiderMining parameters from dark corners of Web Archives
VhostscanA virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
InterlaceEasily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.