galer: fetch URLs from HTML attributes
galer A fast tool to fetch URLs from HTML attributes by crawl-in. Inspired by the @omespino Tweet, which is possible to extract src, href, URL, and action values by evaluating JavaScript...
Category: Web Information Gathering
pillager v0.8.1 releases: recursively search directories for sensitive information in files
Pillager Pillager is designed to provide a simple means of leveraging Go’s strong concurrency model to recursively search directories for sensitive information in files. It does this by standing on...
BugBountyScanner: Bash script/Docker image for Bug Bounty reconnaissance
BugBountyScanner A Bash script and Docker image for Bug Bounty reconnaissance, intended for headless use. Low on resources, high on information output. It’s recommended to run BugBountyScanner from a server...
cloudlist v1.0.4 releases: listing Assets from multiple Cloud Providers
Cloudlist Cloudlist is a multi-cloud tool for getting Assets (Hostnames, IP Addresses) from Cloud Providers. This is intended to be used by the blue team to augment Attack Surface Management...
OneListForAll: Rockyou wordlists for web fuzzing
OneListForAll Rockyou for web fuzzing Wordlists summary onelistforall.txt basically everything, launch it, and go to sleep. 6950906 lines, 113M onelistforallshort.txt a shortened version, it also contains a lot of things, but...
BigBountyRecon: expediate the process of intial reconnaissance on the target organisation
BigBountyRecon BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation. Reconnaissance is the most...
git-wild-hunt: hunt for credentials in github
git-wild-hunt A tool to hunt for credentials in the GitHub wild AKA git*hunt. What checks get run regexes.json This file contains all the regexes that will be used to check against...
Wprecon v2.4.4 releases: vulnerability recognition tool in CMS WordPress
WPrecon (WordPress Recon) Wprecon (WordPress Recon), is a vulnerability recognition tool in CMS WordPress, 100% developed in Go. Features Detection WAF Fuzzing Backup Files Fuzzing Passwords Random User-Agent Plugin(s) Enumerator...
Token-Hunter: Collect OSINT for GitLab groups and members
Token-Hunter Collect OSINT for GitLab groups and members and search the group and group members’ snippets, issues, and issue discussions for sensitive data that may be included in these assets. The information gathered is intended to compliment and...
pidrila: Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
PIDRILA PIDRILA: Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer is a really fast async web path scanner prototype developed by the BrightSearch team for all ethical netstalkers. Features Asynchronous Can simultaneously scan an unlimited number of sites...
UhOh365: see if an email address is valid in Office365
UhOh365 UhOh365 is a script that can see if an email address is valid in Office365. This does not perform any login attempts, is unthrottled, and is incredibly useful for...
sarenka: obtaining and understanding Attack Surface
sarenka SARENKA is an Open Source Intelligence (OSINT) tool which helps you obtaining and understanding Attack Surface. The main goal is to gathering infromation from search engines for Internet-connected devices (https://censys.io/, https://www.shodan.io/)....
sub404: check subdomain takeover vulnerability
Sub404: A Fast Tool To Check Subdomain Takeover Vulnerability Sub 404 is a tool written in python which is used to check the possibility of subdomain takeover vulnerability and it...
CertEagle: Asset monitoring utility using real time CT log feeds
CertEagle – Asset monitoring utility using real-time CT log feeds Introduction In Bugbounties “If you are not first, then you are last” there is no such thing as silver or...
GRecon: automates the process of Google Dorking
GRecon GRecon (Greei-Conn) is a simple python tool that automates the process of Google-Based Recon AKA Google Dorking The current Version 1.0 Run 7 Search Queries (7 Micro-Plugins) on the specified Target...
