146 Open source projects that are alternatives of or similar to Rock On

Advanced reconnaissance utility

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

A collection of awesome one-liner scripts especially for bug bounty tips.

A permutation generation tool written in golang

Making Favicon.ico based Recon Great again !

OSINT Project

In-depth Attack Surface Mapping and Asset Discovery

Your Google Recon is Now Automated

ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.

Python library and CLI for the Bug Bounty Recon API

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

Directory/Subdomain scanner developed in GoLang.

Web Application recon automation

An advanced tool for email reconnaissance

SIEM Tactics, Techiques, and Procedures

Maryam: Open-source Intelligence(OSINT) Framework

my oscp prep collection

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Github stargazers information gathering tool

Reconnaissance tool of Penetration test & Bug Bounty

Striker is an offensive information and vulnerability scanner.

Network footprint scanner platform. Discover domains and run your custom checks periodically.

bug bounty hunters starter notes

Next generation web scanner

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

An automated approach to performing recon for bug bounty hunting and penetration testing.

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

This repository created for personal use and added tools from my latest blog post.

WPrecon (WordPress Recon), is a vulnerability recognition tool in CMS Wordpress, developed in Go and with scripts in Lua.

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

Visualize Erlang/Elixir Nodes On The Command Line

Extract server and IP address information from Browser SSRF

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Th3Inspector 🕵️ Best Tool For Information Gathering 🔎

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Automatic Service Enumeration Script

Reconness Agents Script

List of Awesome Asset Discovery Resources

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

Domain availbility checker

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

Network Security Vulnerability Scanner

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Subdomain discovery using the power of 'The Rapid7 Project Sonar datasets'

Intelligence and Reconnaissance Package/Bundle installer.

Subdomain Enumeration and Scanner

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

Enumerate information from NTLM authentication enabled web endpoints 🔎

Simple shell script for automated domain recognition with some tools

HTTP parameter discovery suite.

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

A tool to hunt for publicly accessible DigitalOcean Spaces