1385 Open source projects that are alternatives of or similar to Recon My Way

Maryam: Open-source Intelligence(OSINT) Framework

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

DNS-Discovery is a multithreaded subdomain bruteforcer.

All about bug bounty (bypasses, payloads, and etc)

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

GitHub Recon — and what you can achieve with it!

List of Awesome Asset Discovery Resources

A note-taking macOS app for penetration-testers.

Extract server and IP address information from Browser SSRF

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Tools of "The Bug Hunters Methodology V2 by @jhaddix"

A passive subdomain finder

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Next generation web scanner

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Scans a list of websites for Cloudfront or S3 Buckets

Unique wordlist generator of unique wordlists.

A curated list of awesome test automation frameworks, tools, libraries, and software for different programming languages. Sponsored by http://sdclabs.com

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

all manner of wordlists

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

🆕 The Multi-Tool Web Vulnerability Scanner.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Unleash the power of cloud

goverview - Get an overview of the list of URLs

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

Automated NoSQL database enumeration and web application exploitation tool.

A curated list of various bug bounty tools

Advanced and easy to use penetration testing framework 💣🔎

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Do some quick reconnaissance on a domain-based web-application

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

Mass querying whois records

Automated Web Recon Shell Scripts

Tool to automate recon

Simultaneously execute various subdomain enumeration tools and aggregate results.

Nuubi Tools (Information-ghatering|Scanner|Recon.)

Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

One-click installer for Frida and Burp certs for SSL Pinning bypass

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Your Google Recon is Now Automated

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

An Extended, Modulair, Host Discovery Framework

Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.

Reconness Agents Script

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.