A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.
-
Updated
Sep 23, 2024 - Go
A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.
Bug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More
A command-line utility designed to help you discover subdomains for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact directly with the target but instead gathers data that is already publicly available.
All About Web Recon & OSINT
A command-line interface (CLI) based utility to recursively crawl webpages. It is designed to systematically browse webpages' URLs and follow links to discover linked webpages' URLs.
This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting to scan multiple bug bounty programs simultaneously, on a recurring basis.
A fast subdomain takeover tool
An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about Bug Bounty in Cybersecurity.
Discover related domains using Whois data from whoxy.com
r3conwhale aims to develop a multifunctional recon chain for web applications, intelligently interpreting collected data, and optimizing performance and resource consumption through a concurrency-based approach.
Automatic Google Dorker And Support Proxy
The nightmare of WAFs & CDNs, Use multi tricks for bypass ratelimit of WAFs & CDNs & Webservers.
This script take a URL or list of subdomain and the required DIR for specific CVE and give the response code for each url
oldhost is a tool for bug bounty hunters to discover old hosts that are no longer available, but might still be present on different known and related servers.
Library for fuzzing & attacking JSON Web Tokens (JWTs). Bindings for other languages included.
Find subdomains and urls in Javascript files
Simply output a random user-agent. Use it with tools that don't have a --random-agent flag. Like `random-agent` or $(random-agent)
Add a description, image, and links to the bug-bounty-tools topic page so that developers can more easily learn about it.
To associate your repository with the bug-bounty-tools topic, visit your repo's landing page and select "manage topics."