1248 Open source projects that are alternatives of or similar to Bugcrowd Levelup Subdomain Enumeration

Python 3.5+ DNS asynchronous brute force utility

A MongoDB importer and API for Project Sonars DNS datasets

In-depth Attack Surface Mapping and Asset Discovery

Handbook of information collection for penetration testing and src

Intelligence and Reconnaissance Package/Bundle installer.

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Extract subdomains from SSL certificates in HTTPS sites.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

A high performance offensive security tool for reconnaissance and vulnerability scanning

Port scanning and domain utility.

无状态子域名爆破工具

In-depth Attack Surface Mapping and Asset Discovery

Semi-automatic OSINT framework and package manager

LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping

Don't Just Search OSINT. Sweep It.

A Docker image for a non-censoring, non-logging, DNSSEC-capable, DNSCrypt-enabled DNS resolver

Enumerate information from NTLM authentication enabled web endpoints 🔎

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

findCDN is a tool created to help accurately identify what CDN a domain is using.

OSINT Tool: Generate username lists for companies on LinkedIn

Tool for fetching/refreshing DNS Root Zone trust anchors

A validating recursive DNS resolver library and standalone server with DNSSEC support

Notes for taking the OSCP in 2097. Read in book form on GitBook

A python tool to check subdomain takeover vulnerability

Dumain Bruteforcer - a fast and flexible domain bruteforcer

Yet Another LInkedIn Scraper...

Command line iterative DNS resolution testing program

Privacy DNS infrastructure

A passive subdomain finder

An automated e-mail OSINT tool

LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

Extracting URLs of a specific target based on the results of "commoncrawl.org"

Burp Suite extension to discover assets from HTTP response.

Check local or remote list of DNS servers for suitability in DNS Amplification DoS.

onedrive user enumeration - pentest tool to enumerate valid onedrive users

Python Namecheap API wrapper. Supports domain registration/renewal/management, domain availability checks, DNS updates and more.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Do some quick reconnaissance on a domain-based web-application

A DNS Sinkhole List for testing purposes. (not for use in production systems) - UUID: 0f90ca2c-4b0a-4fbe-b659-449ab30c4284

HostHunter a recon tool for discovering hostnames using OSINT techniques.

DNS tool - display information about your domain

OSINT tool to find breached emails, databases, pastes, and relevant information

Automatically Launch Google Hacking Queries Against A Target Domain

Fully automated offensive security framework for reconnaissance and vulnerability scanning

The Zonemaster Project

Network footprint scanner platform. Discover domains and run your custom checks periodically.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Intelligence tool but without API key

Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.

OSINT

swiss army knife for hackers

An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.

Directory/File, DNS and VHost busting tool written in Go

Easy files and payloads delivery over DNS

Dedicated to JavaScript and its awesome community since 2015

Maryam: Open-source Intelligence(OSINT) Framework

Sifter aims to be a fully loaded Op Centre for Pentesters

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

Tool to automate common OSINT tasks