b3rito / Yotter
Licence: gpl-3.0
yotter - bash script that performs recon and then uses dirb to discover directories that might lead to information leakage
Stars: ✭ 118
Programming Languages
shell
77523 projects
Projects that are alternatives of or similar to Yotter
Recsech
Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .
Stars: ✭ 173 (+46.61%)
Mutual labels: dns, scanner, recon
Rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+2814.41%)
Mutual labels: scanner, recon, information-gathering
Reconspider
🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Stars: ✭ 621 (+426.27%)
Mutual labels: scanner, recon, information-gathering
Vajra
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Stars: ✭ 269 (+127.97%)
Mutual labels: scanner, recon, information-gathering
tugarecon
Pentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+20.34%)
Mutual labels: scanner, recon, information-gathering
Gorecon
Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal
Stars: ✭ 208 (+76.27%)
Mutual labels: dns, scanner, recon
Whour
Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.
Stars: ✭ 18 (-84.75%)
Mutual labels: dns, scanner, information-gathering
Cloudfail
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
Stars: ✭ 1,239 (+950%)
Mutual labels: scanner, recon, bruteforce
Pulsar
Network footprint scanner platform. Discover domains and run your custom checks periodically.
Stars: ✭ 314 (+166.1%)
Mutual labels: dns, scanner, recon
Amass
In-depth Attack Surface Mapping and Asset Discovery
Stars: ✭ 6,284 (+5225.42%)
Mutual labels: dns, recon, information-gathering
Blazy
Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .
Stars: ✭ 637 (+439.83%)
Mutual labels: scanner, bruteforce
V3n0m Scanner
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Stars: ✭ 847 (+617.8%)
Mutual labels: dns, scanner
Favfreak
Making Favicon.ico based Recon Great again !
Stars: ✭ 564 (+377.97%)
Mutual labels: recon, information-gathering
Reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+725.42%)
Mutual labels: scanner, recon
Dnsbrute
DNS Sub-domain brute forcer, in Python + gevent
Stars: ✭ 40 (-66.1%)
Mutual labels: dns, scanner
Theharvester
E-mails, subdomains and names Harvester - OSINT
Stars: ✭ 6,175 (+5133.05%)
Mutual labels: recon, information-gathering
Nettacker
Automated Penetration Testing Framework
Stars: ✭ 982 (+732.2%)
Mutual labels: information-gathering, bruteforce
Github Recon
GitHub Recon — and what you can achieve with it!
Stars: ✭ 47 (-60.17%)
Mutual labels: recon, information-gathering
yotter
This bash script performs recon by:
- finding the targets IP
- finding the targets IP range
- checks online for subdomains ( pkey.in | hackertarget.com | virustotal.com )
- bruteforces for subdomains ( around 250 checks per second )
- port scans all found IPs for HTTP* services ( around 500 ports per second )
and then uses dirb to discover directories that might lead to information leakage (such as credentials found in server-status)
Requirements
netcat > https://en.wikipedia.org/wiki/Netcat
dirb > http://dirb.sourceforge.net/
Author
Written by b3rito at mes3hacklab
Installation
chmod +x yotter.sh
Usage
[email protected]:~/yotter $ ./yotter.sh
==========================================================================
____ __ ,-----. ,---------. ,---------. .-''-. .-------.
\ \ / /.' .-, '.\ \\ \ .'_ _ \ | _ _ \
\ _. / '/ ,-.| \ _ \`--. ,---' `--. ,---'/ ( ` ) '| ( ' ) |
_( )_ .'; \ '_ / | : | \ | \ . (_ o _) ||(_ o _) /
___(_ o _)' | _`,/ \ _/ | :_ _: :_ _: | (_,_)___|| (_,_).' __
| |(_,_)' : ( '\_/ \ ; (_I_) (_I_) ' \ .---.| |\ \ | |
| `-' / \ `"/ \ ) / (_(=)_) (_(=)_) \ `-' /| | \ `' /
\ / '. \_/``".' (_I_) (_I_) \ / | | \ /
`-..-' '-----' '---' '---' `'-..-' ''-' `'-'
because otters are cute! (by b3rito)
==========================================================================
==========================================================================
version: 1.2
credits: b3rito
twitter/github: b3rito
report bugs: [email protected]
update: ./yotter.sh -u
USAGE: ./yotter.sh -t example.com -d /path/to/dictionary -s 1000(threads)
==========================================================================
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].