1570 Open source projects that are alternatives of or similar to aquatone

Related subdomains finder

Web path scanner

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Pentest: Subdomains enumeration tool for penetration testers.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

This challenge is Inon Shkedy's 31 days API Security Tips.

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Multi source CVE/exploit parser.

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

Little Bug Bounty & Hacking Tools⚔️

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

Selenium powered Python script to automate searching for vulnerable web apps.

A MongoDB importer and API for Project Sonars DNS datasets

An advanced tool for email reconnaissance

Intelligence tool but without API key

OSINT Swiss Army Knife

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Do some quick reconnaissance on a domain-based web-application

Discover Your Attack Surface!

OSINT

Cameradar hacks its way into RTSP videosurveillance cameras

Sifter aims to be a fully loaded Op Centre for Pentesters

List of Awesome Asset Discovery Resources

A tool to hunt for publicly accessible DigitalOcean Spaces

Making Favicon.ico based Recon Great again !

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

Semi-automatic OSINT framework and package manager

Offensive tools as Dockerfiles. Lightweight & Ready to go

A high performance offensive security tool for reconnaissance and vulnerability scanning

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

It's a Docker Environment for pentesting which having all the required tool for VAPT.

Misc. Public Reports of Penetration Testing and Security Audits.

A passive subdomain finder

An OSINT tool to find contacts in order to report security vulnerabilities.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

One-click installer for Frida and Burp certs for SSL Pinning bypass

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

Intelligence and Reconnaissance Package/Bundle installer.

Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.

A script to configure a TP-Link MR3040 running OpenWRT into a simple, yet powerful penetration-testing "dropbox".

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

Boxer: A fast directory bruteforce tool written in Python with concurrency.

Collection of several DDos tools.

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.