webrecon
Sudomy
Our great sponsors
webrecon | Sudomy | |
---|---|---|
1 | 3 | |
49 | 1,839 | |
- | - | |
1.8 | 2.2 | |
over 2 years ago | about 2 months ago | |
Shell | Shell | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
webrecon
Sudomy
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting
- Non brute-forcing options/strategies to find subdomains
-
Looking for an API like builtwith.com (let's you know what technology is behind website), but one that's opensource, or at least is more startup friendly ....
That said, keep in mind that not everything is going to find its way indexed in Google. If it's subdomains you're after, you can use tools like Sublist3r or Sudomy to pull data from multiple sources (not just DNS).
What are some alternatives?
reconness - ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.
Sublist3r - Fast subdomains enumeration tool for penetration testers
Beginner-Bug-Bounty-Automation - Many script that can be modified according to your needs for Information Gathering and Asset discovery in Bug Bounty Hunting (Pull requests are welcome!)
spiderfoot - SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
WhatWeb - Next generation web scanner
Sn1per - Attack Surface Management Platform
log4j-scan-turbo - Multithreaded log4j vulnerability scanner using only bash! Tests all JNDI protocols, HTTP GET/POST, and 84 headers.
LazyRecon - An automated approach to performing recon for bug bounty hunting and penetration testing.
scilla - Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration
eReKon - Yet another web recon tool, rebuilding on t3 stack
ActiveDirectoryAttackTool - ADAT is a small tool used to assist CTF players and Penetration testers with easy commands to run against an Active Directory Domain Controller. This tool is is best utilized using a set of known credentials against the host.
Dome - Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.