303 Open source projects that are alternatives of or similar to fransRecon

Enumerate information from NTLM authentication enabled web endpoints 🔎

Notes for taking the OSCP in 2097. Read in book form on GitBook

Python 3.5+ DNS asynchronous brute force utility

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

🆕 The Multi-Tool Web Vulnerability Scanner.

In-depth Attack Surface Mapping and Asset Discovery

How to prepare for OSCP complete guide

Automatic Service Enumeration Script

Everything needed for doing CTFs

In-depth Attack Surface Mapping and Asset Discovery

Mass querying whois records

Intelligence and Reconnaissance Package/Bundle installer.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Roadmap for preparing for OSCP, anyone is free to use this, and also feedback and contributions are welcome

my oscp prep collection

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

bug bounty hunters starter notes

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Get GTFOBins info about a given exploit from the command line

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

An enum generator for Go

Notes from OSCP, CTF, security adventures, etc...

RECON learn: a free, open platform for training material on epidemics analysis

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

Terribad PrivEsc enumeration script for Windows systems

PHP shells that work on Linux OS, macOS, and Windows OS.

Scrape domain names from SSL certificates of arbitrary hosts

Simultaneously execute various subdomain enumeration tools and aggregate results.

Enumerated Types for Lua

Nuubi Tools (Information-ghatering|Scanner|Recon.)

Suggests programs to run against services found during the enumeration phase of a Pentest

Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.

Bash script for CTF automating basic enumeration

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

dns dig for golang

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.

Contained is all my reference material for my OSCP preparation. Designed to be a one stop shop for code, guides, command syntax, and high level strategy. One simple clone and you have access to some of the most popular tools used for pentesting.

A collection of resources I'm using while working toward the OSCP

goverview - Get an overview of the list of URLs

OpenSSH 2.3 up to 7.4 Mass Username Enumeration (CVE-2018-15473).

Burp extension to decode NTLM SSP headers and extract domain/host information

Vulnerable software and exploits used for OSCP/OSCE preparation

Bash script which quickly identifies open network ports and any associated vulnerabilities / Script Bash qui permet d'identifier rapidement les ports réseaux ouverts et les éventuelles vulnérabilités associées.

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

My notebook for OSCP Lab

a mindmap on pentest #pentestmindmap #oscp #lpt #ecsa #ceh #bugbounty

Tool to automate recon

Elixir wrapper for Recon, tools to diagnose Erlang VM safely in production

A tool that automates the process of enumeration

A @nim-lang utility for scanning IPs for unprotected ADB Android devices connected to the internet

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

A tool to enumerate network services

C++14 library to enhance enumerator capabilities, including arbitrary length, statically allocated, strongly typed masks.

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

渗透测试方法论

Unleash the power of cloud