1404 Open source projects that are alternatives of or similar to Reconness

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Enumerate information from NTLM authentication enabled web endpoints 🔎

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Automation for internal Windows Penetrationtest / AD-Security

Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.

A tool to fastly get all javascript sources/files

Awesome cloud enumerator

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

OSINT

HostHunter a recon tool for discovering hostnames using OSINT techniques.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

🔎 Hunt down social media accounts by username across social networks

Making Favicon.ico based Recon Great again !

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

A collection of awesome one-liner scripts especially for bug bounty tips.

Web path scanner

Monitoring GitLab for sensitive data shared publicly

Semi-automatic OSINT framework and package manager

a recon tool that allows searching on URLs that are exposed via shortener services

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Dump exposed HTTP .git fast

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

E-mails, subdomains and names Harvester - OSINT

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

A Powerful Subdomain Takeover Tool

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

👻Stowaway -- Multi-hop Proxy Tool for pentesters

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

记录自己编写、修改的部分工具

Venom - A Multi-hop Proxy for Penetration Testers

Your Google Recon is Now Automated

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Red Teaming Tactics and Techniques

mXtract - Memory Extractor & Analyzer

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

The best Hacking and PenTesting tools installer on the world

A set of recipes useful in pentesting and red teaming scenarios

Subdomain Takeover tool written in Go

Exploit pack for pentesters and ethical hackers.

The Collective. A repo for a collection of red-team projects found mostly on Github.

Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io) and LOLBAS (https://github.com/LOLBAS-Project/LOLBAS)

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

A Python3 based single-file subdomain enumerator

mosquito - Automating reconnaissance and brute force attacks

Urls de-duplication tool for better recon.

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

A curated list of various bug bounty tools

my oscp prep collection