152 Open source projects that are alternatives of or similar to hunter

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

NestJS + Typeorm codebase containing a full authentification system with roles, sessions and email verification.

OSINT Framework

PyIris-backdoor is a modular, stealthy and flexible remote-access-toolkit written completely in python used to command and control other systems. It is now in the beta stage, possibly perpetually. There are bugs still present in the framework, feel free to contribute or help me out with this project its still under active development >_>

An android eCommerce application for students through which they can buy and sell used goods .

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

Advanced Reconnaissance tool to enumerate attacking surface of the target.

👀 Some of my favorite OSINT tools.

The best possible way to verify and validate an email address.

Simple shell script for automated domain recognition with some tools

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

Email marketing platform for bulk emailing via Amazon SES (Google Cloud Platform and Azure coming soon)

A passive subdomain finder

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

A tool to fastly get all javascript sources/files

Used to send Parse Server password reset and email verification emails though Mailgun

Intelligence and Reconnaissance Package/Bundle installer.

Laravel app boilerplate with email verification process on registration

Change monitoring app that checks the content of web pages in different periods.

A two-step verification for new accounts by verifying email.

Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock

Go scripts for finding sensitive data like API key / some keywords in the github repository

Perform automated network reconnaissance scans

Some of the projects i made when starting to learn c#, winfroms and wpf

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

A Subdomain Enumeration and Validation tool for Bug Bounty and Pentesters.

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

Community curated list of public bug bounty and responsible disclosure programs.

A script using Docker to quickly bring up some honeypots exposing lots of services. For research, reconnaissance, and fun. (DISCLAIMER may not be fun, not to be taken internally, aim away from face)

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

This package provides convenient methods to integrate the NeverBounce API into your project.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Related subdomains finder

A Github organization reconnaissance tool.

Django app to handle authentication and registration by email.

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Advanced and easy to use penetration testing framework 💣🔎

Provides email verification on the go.

Yar is a tool for plunderin' organizations, users and/or repositories.

Exam Prep for the Ec-council Certified Ethical Hacker 312-50

A high performance offensive security tool for reconnaissance and vulnerability scanning

Android app uses FACEBOOK's ACCOUNT KIT to login without password with EMAIL or PHONE.

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

🔎 Find usernames and download their data across social media.

MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and security assessment operations.

🔑 Helper class to verify one's identity via personal channels(SMS, Phone, E-Mail and more!)

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

Verify user email without database using cryptography

Accurately Locate Smartphones using Social Engineering

TypeScript wrapper library over Reacher API

Enumerate information from NTLM authentication enabled web endpoints 🔎

📝 urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server

A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.

Pentest: Subdomains enumeration tool for penetration testers.

Unique wordlist generator of unique wordlists.

ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.