Find files and directories. Multiple options like use random user agents, change methods...
node
node-fetch
Find subdomains. Uses a certificate search engine for issued certificates listing https domains. Multiple output formats.
node
node-fetch
Find any services answering tcp connections. Use a list of domains, scan ports and check some basic security issues related to web services if port 80 or port 443 is answering
node
curl
nmap
Find target information using google dorks.
node
curl
lynx
Find DOM sinks in source code by url. Helps to find DOM XSS.
node
node-fetch
Exploit reflected XSS automatically or generate exploit, payload and server code in Node or PHP.
node
curl
php
Extract urls, parameters and scan reflected XSS and OpenRedirect via GET in 2 modes (work in extracted parameters or bruteforce each extracted url)
node node-fetch