515 Open source projects that are alternatives of or similar to WhoEnum

Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated using Sublist3r.

Enumerate information from NTLM authentication enabled web endpoints 🔎

Change monitoring app that checks the content of web pages in different periods.

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

Extract server and IP address information from Browser SSRF

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

Docker image for osint

Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques

I built some bash functions to help me while doing mundane and repetitive tasks using BBRF, Nuclei or other Bug bounty tool.

Aggregated wordlist pulled from commonly used tools for discovery, enumeration, fuzzing, and exploitation.

Automated Enumeration Script for Pentesting

You can find hardcoded Api-Key,Secret,Token Etc..

Enumerate AD through LDAP with a collection of helpfull scripts being bundled

🧮 SOCKS5/4/4a 🌾 validating proxy pool and upstream SOCKS5 server for 🤽 LOLXDsoRANDum connections 🎋

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

Unique wordlist generator of unique wordlists.

Better PHP enum support

Inventus is a spider designed to find subdomains of a specific domain by crawling it and any subdomains it discovers.

Access domain information via python and command line.

A collection of some of my scripts

Intelligent WHOIS client

A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.

Network Diagnostic Tool

PHP WHOIS provides parsed and raw whois lookup of domains and ASN routes. PHP 5.4+ and 7+ compatible

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Bug's feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities...

Auto IP or Domain Attack Tool ( #1 )

Go(Golang) module for domain and ip whois information query.

The tool to check the availability or syntax of domain, IP or URL.

Public Zone Database

Boxer: A fast directory bruteforce tool written in Python with concurrency.

Tiny Sentry client with idiomatic wrapper for Angular

Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/

Toolset for detecting reflected xss in websites

Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases

Python module/library for retrieving WHOIS information of domains 💻❤

The PHP enumeration type library

Go(Golang) module for domain whois information parsing.

Domain Expiration Check Shell Script Forked and Maintained by nixCraft

A Handy-Dandy Personal Toolkit for Enumeration and a headstart on attacking a machine!

This cheat sheet contains common enumeration and attack methods for Windows Active Directory with the use of powershell.

A powerful tool for managing networks and troubleshoot network problems!

Openprovider WHOIS server/daemon

Domain availability checking for Golang

Th3Inspector 🕵️ Best Tool For Information Gathering 🔎

An intelligent — pure Ruby — WHOIS client and parser.

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

This plugin provides native network instrumentation for monitoring and metrics collection, including: hardware, TCP response, RBLs, whois, port status, and more.

[ARCHIVED] Please report to https://github.com/funilrys/PyFunceble.

Implementation of enumeration classes in PHP. The better alternative for enums

Single-threaded epoll-based concurrent bulk whois client

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.

Simple Python tool to check if there is an Office 365 instance linked to a domain.

The Last Web Recon Tool You'll Need

Retrieve and parse whois data for IPv4 and IPv6 addresses