Can I Take Over Xyz"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Stars: ✭ 2,808 (+1188.07%)
AspnetcoresubdomainSimple usage lib for subdomain routing in ASP.NET Core/Framework MVC
Stars: ✭ 157 (-27.98%)
GsdfA domain searcher named GoogleSSLdomainFinder - 基于谷歌SSL透明证书的子域名查询工具
Stars: ✭ 155 (-28.9%)
MassdnsA high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
Stars: ✭ 2,093 (+860.09%)
Pigatpigat ( Passive Intelligence Gathering Aggregation Tool ) 被动信息收集聚合工具
Stars: ✭ 140 (-35.78%)
AmassIn-depth Attack Surface Mapping and Asset Discovery
Stars: ✭ 1,693 (+676.61%)
SubtakeAutomatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
Stars: ✭ 104 (-52.29%)
AcamarA Python3 based single-file subdomain enumerator
Stars: ✭ 89 (-59.17%)
SubjackSubdomain Takeover tool written in Go
Stars: ✭ 1,194 (+447.71%)
SpoodleA mass subdomain (Subbrute) + poodle vulnerability scanner
Stars: ✭ 66 (-69.72%)
FierceA DNS reconnaissance tool for locating non-contiguous IP space.
Stars: ✭ 1,072 (+391.74%)
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+346.79%)
LionLion is a fast HTTP router for building modern scalable modular REST APIs in Go
Stars: ✭ 750 (+244.04%)
Anubis🔓Subdomain enumeration and information gathering tool
Stars: ✭ 722 (+231.19%)
K8cscanK8Cscan大型内网渗透自定义插件化扫描神器,包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用,程序采用多线程批量扫描大型内网多个IP段C段主机,目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本,支持Cobalt Strike联动
Stars: ✭ 693 (+217.89%)
SuboverA Powerful Subdomain Takeover Tool
Stars: ✭ 607 (+178.44%)
Subdomain3A new generation of tool for discovering subdomains( ip , cdn and so on)
Stars: ✭ 605 (+177.52%)
TeemoA Domain Name & Email Address Collection Tool
Stars: ✭ 595 (+172.94%)
Domain hunterA Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件
Stars: ✭ 594 (+172.48%)
AmassIn-depth Attack Surface Mapping and Asset Discovery
Stars: ✭ 6,284 (+2782.57%)
Bugcrowd Levelup Subdomain EnumerationThis repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
Stars: ✭ 513 (+135.32%)
ShufflednsshuffleDNS is a wrapper around massdns written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.
Stars: ✭ 498 (+128.44%)
Dictionary Of PentestingDictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
Stars: ✭ 492 (+125.69%)
Darkeye渗透测试情报收集工具
Stars: ✭ 467 (+114.22%)
RegisterGrab your own sweet-looking '.is-a.dev' subdomain
Stars: ✭ 470 (+115.6%)
Tld.jsJavaScript API to work easily with complex domain names, subdomains and well-known TLDs.
Stars: ✭ 399 (+83.03%)
AiodnsbrutePython 3.5+ DNS asynchronous brute force utility
Stars: ✭ 370 (+69.72%)
Js.orgDedicated to JavaScript and its awesome community since 2015
Stars: ✭ 3,996 (+1733.03%)
CelerystalkAn asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.
Stars: ✭ 333 (+52.75%)
OneforallOneForAll是一款功能强大的子域收集工具
Stars: ✭ 4,202 (+1827.52%)
GetaltnameExtract subdomains from SSL certificates in HTTPS sites.
Stars: ✭ 320 (+46.79%)
SonarsearchA MongoDB importer and API for Project Sonars DNS datasets
Stars: ✭ 297 (+36.24%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+1455.5%)
sub404A python tool to check subdomain takeover vulnerability
Stars: ✭ 205 (-5.96%)
k-domainsA simple module to manage multiple subdomains with just one project
Stars: ✭ 41 (-81.19%)
Behold3r👻Behold3r -- 收集指定网站的子域名,并可监控指定网站的子域名更新情况,发送变更报告至指定邮箱
Stars: ✭ 29 (-86.7%)
DomainkerBugBounty Tool
Stars: ✭ 40 (-81.65%)
python-ddnsA self-hosted dynamic DNS service using BIND9 and python.
Stars: ✭ 26 (-88.07%)
ksubdomainSubdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second
Stars: ✭ 320 (+46.79%)
Laravel-Tongue🎉 Finally a subdomain localization that works how you want it to work. 🌐
Stars: ✭ 28 (-87.16%)
DumbDumain Bruteforcer - a fast and flexible domain bruteforcer
Stars: ✭ 54 (-75.23%)
multi-tenancy-devisemtdevise adds basecamp style user logins to your ruby on rails application.
Stars: ✭ 27 (-87.61%)
Sub-DrillA very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
Stars: ✭ 70 (-67.89%)
magicReconMagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (+119.27%)
dnstakeDNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
Stars: ✭ 723 (+231.65%)
ras-fuzzerRAS(RAndom Subdomain) Fuzzer
Stars: ✭ 42 (-80.73%)
koa-subdomainSimple and lightweight Koa middleware to handle multilevel and wildcard subdomains
Stars: ✭ 23 (-89.45%)
AggressorLadon for Cobalt Strike, Large Network Penetration Scanner, vulnerability / exploit / detection / MS17010 / password/brute-force/psexec/atexec/sshexec/webshell/smbexec/netcat/osscan/netscan/struts2Poc/weblogicExp
Stars: ✭ 228 (+4.59%)
DnsprobeDNSProb is a tool built on top of retryabledns that allows you to perform multiple dns queries of your choice with a list of user supplied resolvers.
Stars: ✭ 221 (+1.38%)