623 Open source projects that are alternatives of or similar to Sub-Drill

Pentest: Subdomains enumeration tool for penetration testers.

OneForAll是一款功能强大的子域收集工具

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Related subdomains finder

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Tips and Tutorials for Bug Bounty and also Penetration Tests.

Change monitoring app that checks the content of web pages in different periods.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

A Powerful Subdomain Takeover Tool

Subdomain Takeover tool written in Go

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

This repository created for personal use and added tools from my latest blog post.

An automated approach to performing recon for bug bounty hunting and penetration testing.

One-click installer for Frida and Burp certs for SSL Pinning bypass

Python 3.5+ DNS asynchronous brute force utility

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

Simultaneously execute various subdomain enumeration tools and aggregate results.

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

HostHunter a recon tool for discovering hostnames using OSINT techniques.

E-mails, subdomains and names Harvester - OSINT

Making Favicon.ico based Recon Great again !

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

Urls de-duplication tool for better recon.

A tool to fastly get all javascript sources/files

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

A Tool for Domain Flyovers

Simple shell script for automated domain recognition with some tools

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

A python tool to check subdomain takeover vulnerability

An automated target reconnaissance pipeline.

Semi-automatic OSINT framework and package manager

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

A collection of awesome one-liner scripts especially for bug bounty tips.

apkizer is a mass downloader for android applications for all available versions.

Repositório com conteúdo sobre web hacking em português

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

Dumain Bruteforcer - a fast and flexible domain bruteforcer

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

🎯 RFI/LFI Payload List

Unleash the power of cloud

BugBounty Tool

Mass querying whois records

A permutation generation tool written in golang

Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second

A MongoDB importer and API for Project Sonars DNS datasets

Little Bug Bounty & Hacking Tools⚔️

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

shuffleDNS is a wrapper around massdns written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.

In-depth Attack Surface Mapping and Asset Discovery

Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.

A DNS reconnaissance tool for locating non-contiguous IP space.

Just another useless C2 occupying space in some HDD somewhere.

bash scripting thing !

A tool for generating reverse shell payloads on the fly.

goverview - Get an overview of the list of URLs