PwnXSS: Vulnerability (XSS) scanner exploit

Subdomain and target enumeration tool built for offensive security testing

CeWL is a Custom Word List Generator

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

Next generation web scanner

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

w3af: web application attack and audit framework, the open source web vulnerability scanner.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Loki - Simple IOC and YARA Scanner

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

A high performance offensive security tool for reconnaissance and vulnerability scanning

Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

The recursive internet scanner for hackers. 🧡

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Fast subdomains enumeration tool for penetration testers

Hunt down social media accounts by username across social networks

API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites

Information gathering framework for phone numbers

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

E-mails, subdomains and names Harvester - OSINT

Fast passive subdomain enumeration tool.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux and Ubuntu.

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

All In One Web Recon

Quickly discover exposed hosts on the internet using multiple search engines.

List of Awesome Asset Discovery Resources