fnggggggggggggggggggggg's Stars
pownjs/recon
A powerful target reconnaissance framework powered by graph theory.
s0md3v/ReconDog
Reconnaissance Swiss Army Knife
dstotijn/hetty
An HTTP toolkit for security research.
zaproxy/zaproxy
The ZAP by Checkmarx Core project
assetnote/kiterunner
Contextual Content Discovery Tool
assetnote/wordlists
Automated & Manual Wordlists provided by Assetnote
EdOverflow/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
securitytxt/security-txt
A proposed standard that allows websites to define security policies.
bee-san/pyWhat
🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙♀️
Ciphey/Ciphey
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
tomnomnom/meg
Fetch many paths for many hosts - without killing the hosts
tomnomnom/waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
tomnomnom/assetfinder
Find domains and subdomains related to a given domain
tomnomnom/httprobe
Take a list of domains and probe for working HTTP and HTTPS servers
tomnomnom/gron
Make JSON greppable!
codingo/NoSQLMap
Automated NoSQL database enumeration and web application exploitation tool.
codingo/Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
RustScan/RustScan
🤖 The Modern Port Scanner 🤖
epi052/recon-pipeline
An automated target reconnaissance pipeline.
epi052/feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
pry0cc/axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
projectdiscovery/nuclei
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
projectdiscovery/subfinder
Fast passive subdomain enumeration tool.
projectdiscovery/httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
projectdiscovery/naabu
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
projectdiscovery/proxify
A versatile and portable proxy for capturing, manipulating, and replaying HTTP/HTTPS traffic on the go.
projectdiscovery/dnsx
dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.
yogeshojha/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
owasp-amass/amass
In-depth attack surface mapping and asset discovery