496 Open source projects that are alternatives of or similar to recce

OneForAll是一款功能强大的子域收集工具

Pentest: Subdomains enumeration tool for penetration testers.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Gosint is a distributed asset information collection and vulnerability scanning platform

ICP备案查询，可查询企业或域名的ICP备案信息，自动完成滑动验证，保存结果到Excel表格，适用于2022年新版的工信部备案管理系统网站，告别频繁拖动验证，以及某站*工具要开通VIP才可查看备案信息的坑

🔓Subdomain enumeration and information gathering tool

a shell script aim to automatically launch 50+ online web scanning tools in the Browsaer against a target domain in a 10 waves

The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Subdomain discovery using the power of 'The Rapid7 Project Sonar datasets'

Subcert is an subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Th3Inspector 🕵️ Best Tool For Information Gathering 🔎

E-mails, subdomains and names Harvester - OSINT

The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

A passive subdomain finder

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers

Simultaneously execute various subdomain enumeration tools and aggregate results.

Phomber is infomation grathering tool that reverse search phone numbers and get their details, written in python3.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

Making Favicon.ico based Recon Great again !

🎯 XML External Entity (XXE) Injection Payload List

Unique wordlist generator of unique wordlists.

a commandline #OSINT tool to find the online presence of a username in popular social media websites like Facebook, Instagram, Twitter, etc.

Totem allows you to retrieve information about ads of a facebook page , we can retrieve the number of people targeted, how much the ad cost and a lot of other information.

It's a Docker Environment for pentesting which having all the required tool for VAPT.

XSS Payload without Anything.

This document proposes a way of standardising the structure, language, and grammar used in security policies.

Ruby based reverse IP-lookup tool.

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

Astra is a tool to find URLs and secrets inside a webpage/files

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

🔍 A Complete Osint Tool

Signatures for jaeles scanner by @j3ssie

A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

Captive wifi hotspot bypass tool for Linux

Provides various Windows Server Active Directory (AD) security-focused reports.

mirror of https://mypdns.org/my-privacy-dns/matrix as it is obviously no longer safe to do Girhub nor have we no longer any trust in them. See https://mypdns.org/my-privacy-dns/porn-records/-/issues/1347

asnap aims to render recon phase easier by providing updated data about which companies owns which ipv4 or ipv6 addresses and allows the user to automate initial port and service scanning.

Collection grep patterns for Tom Hudson a.k.a Tomnomnom tools namely gf

A collection of my quick and dirty scripts for vulnerability POC and detections

HTTP fuzzer engine security oriented

My personal bug bounty toolkit.

Curso de Ciência da Computação

E4GL30S1NT - Simple Information Gathering Tool

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.

A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan

Track any ip address with IP-Tracker. IP-Tracker is developed for Linux and Termux. you can retrieve any ip address information using IP-Tracker.

goverview - Get an overview of the list of URLs

Scan secrets from Continuous Integration Build Logs

Browser extension that uses intelligence to combat malicious websites by blocking them in real-time.

IStego100K: Large-scale Image Steganalysis Dataset

DNS hijacking via dead records automation tool

Little Bug Bounty & Hacking Tools⚔️