A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.
-
Updated
Feb 12, 2024 - Go
A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.
Bug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More
A command-line interface (CLI) based passive subdomain discovery utility. It is designed to efficiently identify known subdomains of given domains by tapping into a multitude of curated online passive sources.
All About Web Recon & OSINT
A command-line interface (CLI) based utility to recursively crawl webpages. It is designed to systematically browse webpages' URLs and follow links to discover linked webpages' URLs.
This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting to scan multiple bug bounty programs simultaneously, on a recurring basis.
An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about Bug Bounty in Cybersecurity.
A fast subdomain takeover tool
Discover related domains using Whois data from whoxy.com
subscout is a simple, nimble subdomain enumeration tool written in Rust language. It is designed to help bug bounty hunters, security professionals and penetration testers discover subdomains of a given target domain.
r3conwhale aims to develop a multifunctional recon chain for web applications, intelligently interpreting collected data, and optimizing performance and resource consumption through a concurrency-based approach.
This script take a URL or list of subdomain and the required DIR for specific CVE and give the response code for each url
oldhost is a tool for bug bounty hunters to discover old hosts that are no longer available, but might still be present on different known and related servers.
Library for fuzzing & attacking JSON Web Tokens (JWTs). Bindings for other languages included.
Automatic Google Dorker And Support Proxy
Find subdomains and urls in Javascript files
Domainer is a Go script that allows you to extract the root domains from a list of domains based on the ARPANET RFC's for (top-level) domains (TLDs). It removes the scheme (if present) from the input domains and extracts the last label before the TLD to produce the root domain. The extracted root domains are then printed as output.
Add a description, image, and links to the bug-bounty-tools topic page so that developers can more easily learn about it.
To associate your repository with the bug-bounty-tools topic, visit your repo's landing page and select "manage topics."