1303 Open source projects that are alternatives of or similar to magicRecon

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Top disclosed reports from HackerOne

Deliberately vulnerable scripts for Web Security training

Advanced reconnaissance utility

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.

Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

A MongoDB importer and API for Project Sonars DNS datasets

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

A Python3 based single-file subdomain enumerator

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Powerfull XSS Scanning and Parameter analysis tool&gem

Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .

No description or website provided.

被动式漏洞扫描系统

A Powerful Subdomain Takeover Tool

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

all manner of wordlists

sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.

Awesome Vulnerable Applications

Agent scanner for vulners.com

The unofficial HackerOne disclosure Timeline

Nuubi Tools (Information-ghatering|Scanner|Recon.)

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

Advanced dork Search & Mass Exploit Scanner

OWASP Joomla Vulnerability Scanner Project

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

massive SQL injection vulnerability scanner

An automated target reconnaissance pipeline.

Web Application Security Scanner Framework

hacker, ready for more of our story ! 🚀

Scanner, signatures and the largest collection of Magento malware

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang

🆕 The Multi-Tool Web Vulnerability Scanner.

A scanner for Moodle LMS

Remote command execution vulnerability scanner for Log4j.

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

A toolkit for Security Researchers

Cross Origin Resource Sharing MisConfiguration Scanner

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Unique wordlist generator of unique wordlists.

Exploitation Framework for Embedded Devices

Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting

A collection of some of my scripts

Ladon for Cobalt Strike, Large Network Penetration Scanner, vulnerability / exploit / detection / MS17010 / password/brute-force/psexec/atexec/sshexec/webshell/smbexec/netcat/osscan/netscan/struts2Poc/weblogicExp

Backend logic implementation for Vulnerability Management System

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.