JannisKirschner / Horn3t
Licence: gpl-2.0
Powerful Visual Subdomain Enumeration at the Click of a Mouse
Stars: ✭ 120
Programming Languages
python
139335 projects - #7 most used programming language
Labels
Projects that are alternatives of or similar to Horn3t
Crithit
Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (+51.67%)
Mutual labels: security-tools, pentesting, penetration-testing, security-audit, enumeration
Scilla
🏴☠️ Information Gathering tool 🏴☠️ DNS / Subdomains / Ports / Directories enumeration
Stars: ✭ 116 (-3.33%)
Mutual labels: security-tools, pentesting, penetration-testing, enumeration, subdomain-scanner
Nosqlmap
Automated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+1506.67%)
Mutual labels: security-tools, penetration-testing, security-audit, enumeration
Jwtxploiter
A tool to test security of json web token
Stars: ✭ 130 (+8.33%)
Mutual labels: security-tools, pentesting, penetration-testing, websecurity
Pentest Notes
Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)
Stars: ✭ 89 (-25.83%)
Mutual labels: security-tools, pentesting, penetration-testing, security-audit
Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (+1420%)
Mutual labels: security-tools, penetration-testing, security-audit, enumeration
A Red Teamer Diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (+218.33%)
Mutual labels: security-tools, pentesting, penetration-testing, enumeration
Habu
Hacking Toolkit
Stars: ✭ 635 (+429.17%)
Mutual labels: security-tools, pentesting, penetration-testing, security-audit
Recsech
Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .
Stars: ✭ 173 (+44.17%)
Mutual labels: security-tools, penetration-testing, security-audit, websecurity
Fdsploit
File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Stars: ✭ 199 (+65.83%)
Mutual labels: security-tools, pentesting, penetration-testing, enumeration
Resources
A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
Stars: ✭ 62 (-48.33%)
Mutual labels: security-tools, pentesting, penetration-testing, security-audit
Diamorphine
LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)
Stars: ✭ 725 (+504.17%)
Mutual labels: security-tools, pentesting, security-audit
Interlace
Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Stars: ✭ 760 (+533.33%)
Mutual labels: security-tools, penetration-testing, enumeration
Vhostscan
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Stars: ✭ 767 (+539.17%)
Mutual labels: security-tools, penetration-testing, security-audit
Rapidscan
🆕 The Multi-Tool Web Vulnerability Scanner.
Stars: ✭ 775 (+545.83%)
Mutual labels: security-tools, penetration-testing, enumeration
Dirsearch
Web path scanner
Stars: ✭ 7,246 (+5938.33%)
Mutual labels: pentesting, penetration-testing, enumeration
Evillimiter
Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.
Stars: ✭ 764 (+536.67%)
Mutual labels: security-tools, pentesting, penetration-testing
Sudomy
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 859 (+615.83%)
Mutual labels: pentesting, enumeration, subdomain-scanner
Hashview
A web front-end for password cracking and analytics
Stars: ✭ 601 (+400.83%)
Mutual labels: security-tools, pentesting, penetration-testing
Active Directory Exploitation Cheat Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Stars: ✭ 870 (+625%)
Mutual labels: pentesting, penetration-testing, enumeration
Horn3t 🐝 - Better Subdomain Reconnaissance
- Recon your targets at blazing speed
- Enhance your productivity by focusing on interesting looking sites
- Enumerate critical sites immediately
- Sting your target
Horn3t is your Nr #1 tool for exploring subdomains visually.
Building on the great Sublist3r framework (or extensible with your favorite one) it searches for subdomains and generates awesome picture previews. Get a fast overview of your target with http status codes, add custom found subdomains and directly access found urls with one click.
Installation
- Install Google Chrome
- Install requirements.txt with pip3
- Install requirements.txt of sublist3r with pip3
- Put the directory within the web server of your choice
- Make sure to have the right permissions
- Run horn3t.py
Or alternatively use the install.sh file with docker.
Afterwards you can access the web portal under http://localhost:1337
Todo
- Better Scaling on Firefox
- Add Windows Dockerfile
- Direkt Nmap Support per click on a subdomain
- Direkt Dirb Support per click on a subdomain
- Generate PDF Reports of found subdomains
- Assist with subdomain takeover
License
Horn3t is licensed under the GNU GPL license. take a look at the LICENSE for more information.
Respect legal restrictions and only conduct testing against infrastructure that you have permission to target.
Credits
- aboul3la - The creator of Sublist3r; turbolist3r adds some features but is otherwise a near clone of sublist3r.
- TheRook - The bruteforce module was based on his script subbrute.
- bitquark - The Subbrute's wordlist was based on his research dnspop.
Tested on Windows 10 and Debian with Google Chrome/Chromium 73
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].