burp-scope-monitor: Burp Suite Extension to monitor new scope
Burp Scope Monitor Extension A Burp Suite Extension to monitor and keep track of tested endpoints. Main Features Simple, easy way to keep track of unique endpoints when testing an...
Category: Web Information Gathering
recce: Domain status checker
recce It was my personal script that I have been using during my recon in bug bounties that check the status of domain whether they are alive or not. It...
rebel-framework: Advanced and easy to use penetration testing framework
REBEL-FRAMEWORK Advanced and easy to use penetration testing framework Module├ ├ net/iface ➤ Interface info. ├ net/map ➤ Hosts live Scan in LAN. ├ net/scan ➤ Scan [Ports, OS, Etc]...
buster: An advanced tool for email reconnaissance
Buster is an advanced OSINT tool used to: Get social accounts of an email using multiple sources(gravatar,about.me, myspace, skype,github,linkedin, previous breaches) Get links to where the email was found using...
sublert: security and reconnaissance tool
Sublert is a security and reconnaissance tool that was written in Python to leverage certificate transparency for the sole purpose of monitoring new subdomains deployed by specific organizations and issued...
mpDNS: Multi-Purpose DNS Server
mpDNS aka multi-purpose DNS Server DNS Server with multiple useful features Should work on Python 2 and 3 names.db -> holds all custom records (see examples) Simple wildcards like *.example.com...
twint v2.1.21 releases: An Advanced Twitter Scraping Tool
twint Twint is an advanced Twitter scraping tool written in python that allows for scraping Tweets and pictures from Twitter profiles without using Twitter’s API. Twint utilizes Twitter’s search operators to let you...
Nmap 7.93 released: open-source tool for network exploration and security auditing
nmap (“Network Mapper“) is an open-source tool for network exploration and security auditing. It was designed to rapidly scan large networks, although it works fine to scan single hosts. nmap...
Attack Surface Mapper: automate the reconnaissance process
Attack Surface Mapper Attack Surface Mapper is a reconnaissance tool that uses a mixture of open-source intelligence and active techniques to expand the attack surface of your target. You feed...
FOCA v3.4.7.1 releases: find metadata and hidden information in the documents
FOCA FOCA (Fingerprinting Organizations with Collected Archives) is a tool used mainly to find metadata and hidden information in the documents its scans. These documents may be on web pages...
subzy: Subdomain takeover checker
Subzy Subdomain takeover tool which works based on matching response fingerprints from can-i-take-over-xyz Installation git clone https://github.com/LukaSikic/subzy Use An only required flag is either –target or –targets –target (string) – Set single or multiple...
amass v4.2 releases: In-depth subdomain enumeration written in Go
The OWASP Amass tool suite obtains subdomain names by scraping data sources, recursive brute forcing, crawling web archives, permuting/altering names, and reverse DNS sweeping. Additionally, Amass uses the IP addresses...
GCPBucketBrute: enumerate Google Storage buckets
GCPBucketBrute A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated. This script (optionally) accepts GCP user/service account...
crosslinked v0.3 releases: LinkedIn enumeration tool
CrossLinked LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping. Names can be formatted in a defined naming convention for further security testing. CrossLinked...
armory: take in a lot of external and discovery data from a lot of tools
Armory is a tool meant to take in a lot of external and discovery data from a lot of tools, add it to a database and correlate all of the...
