1580 Open source projects that are alternatives of or similar to tugarecon

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

GitHub Recon — and what you can achieve with it!

A collection of awesome one-liner scripts especially for bug bounty tips.

Powerfull XSS Scanning and Parameter analysis tool&gem

A list of resources for those interested in getting started in bug bounties

Simple shell script for automated domain recognition with some tools

A tool to fastly get all javascript sources/files

Subdomain Takeover tool written in Go

Intelligence and Reconnaissance Package/Bundle installer.

An Extended, Modulair, Host Discovery Framework

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Semi-automatic OSINT framework and package manager

🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

List of Awesome Asset Discovery Resources

It's a Docker Environment for pentesting which having all the required tool for VAPT.

Vulnerability assessment and penetration testing automation and reporting platform for teams.

🆕 The Multi-Tool Web Vulnerability Scanner.

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Automated Web Recon Shell Scripts

Snoop — инструмент разведки на основе открытых данных (OSINT world)

A Fast Broken Link Hijacker Tool written in Python

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

An OSINT tool to gather information about the real owner of a phone number

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

A curated list of awesome infosec courses and training resources.

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

my oscp prep collection

Multi source CVE/exploit parser.

Yet Another PHP Shell - The most complete PHP reverse shell

network reconnaissance toolkit

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Automated NoSQL database enumeration and web application exploitation tool.

Subdomain enumeration through various techniques

The Swiss Army knife for automated Web Application Testing

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Pentest Report Generator

An advanced tool for email reconnaissance

Penetration tests guide based on OWASP including test cases, resources and examples.

Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal

All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

all manner of wordlists

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

🔐 Docker Container for Penetration Testing & Security

A high performance offensive security tool for reconnaissance and vulnerability scanning

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

A passive subdomain finder

A permutation generation tool written in golang

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

yotter - bash script that performs recon and then uses dirb to discover directories that might lead to information leakage