814 Open source projects that are alternatives of or similar to Paramspider

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

An OSINT tool to find contacts in order to report security vulnerabilities.

Web path scanner

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

Interactive CLI Web Crawler

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

A Tool for Domain Flyovers

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

HTTP fuzzer engine security oriented

Do some quick reconnaissance on a domain-based web-application

Fully automated offensive security framework for reconnaissance and vulnerability scanning

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

A passive subdomain finder

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

Extract endpoints marked as disallow in robots files to generate wordlists.

Related subdomains finder

Nuubi Tools (Information-ghatering|Scanner|Recon.)

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

OSINT

A MongoDB importer and API for Project Sonars DNS datasets

swiss army knife for hackers

RAS(RAndom Subdomain) Fuzzer

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Gosint is a distributed asset information collection and vulnerability scanning platform

OneForAll是一款功能强大的子域收集工具

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Command line tool for testing CRLF injection on a list of domains.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

a recon tool that allows searching on URLs that are exposed via shortener services

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Making Favicon.ico based Recon Great again !

Rockyou for web fuzzing

A high performance offensive security tool for reconnaissance and vulnerability scanning

Python library and CLI for the Bug Bounty Recon API

Hacking tools

Extracting URLs of a specific target based on the results of "commoncrawl.org"

No description or website provided.

Intelligence tool but without API key

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

A collection of awesome one-liner scripts especially for bug bounty tips.

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

A unit test-like interface for fuzzing and symbolic execution

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

Multi Tool Subdomain Enumeration

A big list of Android Hackerone disclosed reports and other resources.

An analysis tool for Python that blurs the line between testing and type systems.

CLI tool for open source and threat intelligence

Netzob: Protocol Reverse Engineering, Modeling and Fuzzing

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

A fast, parallel test case minimization tool.

Powerfull XSS Scanning and Parameter analysis tool&gem

holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.

Reconnaissance tool for GitHub organizations