980 Open source projects that are alternatives of or similar to Sudomy

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Pentest: Subdomains enumeration tool for penetration testers.

🆕 The Multi-Tool Web Vulnerability Scanner.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

BugBounty Tool

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

An automated target reconnaissance pipeline.

bingip2hosts is a Bing.com web scraper that discovers websites by IP address

OneForAll是一款功能强大的子域收集工具

Subdomain discovery using the power of 'The Rapid7 Project Sonar datasets'

Domain availbility checker

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

A high performance offensive security tool for reconnaissance and vulnerability scanning

Web path scanner

Tool to automate recon

an asynchronous target enumeration tool

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Automated NoSQL database enumeration and web application exploitation tool.

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Tips and Tutorials for Bug Bounty and also Penetration Tests.

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

Credentials Checking Framework

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Multi Tool Subdomain Enumeration

Security Tool to Look For Interesting Files in S3 Buckets

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

The Offensive Manual Web Application Penetration Testing Framework.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

A MongoDB importer and API for Project Sonars DNS datasets

Perform automated network reconnaissance scans

Intelligence and Reconnaissance Package/Bundle installer.

Enumerate information from NTLM authentication enabled web endpoints 🔎

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Fast and customizable vulnerability scanner For JIRA written in Python

Advanced Reconnaissance tool to enumerate attacking surface of the target.

多合一网站指纹扫描器，轻松获取网站的 IP / DNS 服务商 / 子域名 / HTTPS 证书 / WHOIS / 开发框架 / WAF 等信息

Http request smuggling vulnerability scanner

Network Security Vulnerability Scanner

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

No description or website provided.

a Go code to detect leaks in JS files via regex patterns

Python tool that monitors and logs user-run commands on a Linux system for either offensive or defensive purposes..

findCDN is a tool created to help accurately identify what CDN a domain is using.

Nuubi Tools (Information-ghatering|Scanner|Recon.)

CloudFlare Checker written in Go

Automatic Enumeration Tool based in Open Source tools

Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Powerfull XSS Scanning and Parameter analysis tool&gem

🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.