Complete Security Testing Checklist

Automation framework for reconnaissance and vulnerability scanning

Automated reconnaissance tool for bug bounty hunters

Subdomain enumeration tool with passive and active scanning

Fully automated offensive security framework for reconnaissance

All-in-one web reconnaissance tool with modular design

Automated reconnaissance framework with web interface

Automated reconnaissance and vulnerability scanning suite

Automated reconnaissance pipeline using docker

Powerful subdomain collection tool

Fast and flexible web application security scanner

Lightweight recon tool for Raspberry Pi

Comprehensive reconnaissance framework for security researchers

Automated reconnaissance wrapper script

Automated pentest framework for offensive security

Multi-tool web vulnerability scanner

In-depth attack surface mapping and asset discovery

Fast subdomain enumeration tool for penetration testers

Rapid Recon API for project Sonar

Go client to communicate with Chaos DNS dataset

Fast passive subdomain enumeration tool

Generates permutations, alterations and mutations of subdomains

Wrapper around massdns for bruteforcing subdomains

Find domains and subdomains related to a given domain

Fetch URLs from the Wayback Machine

Find subdomains on GitHub

Fast DNS scanner and subdomain enumerator

Directory/File, DNS and VHost busting tool in Go

Subdomain scan with virustotal and wordlist

Async DNS brute force utility

A tool to perform permutations, mutations and alteration of subdomains in golang

Subdomain scanner with high-speed multi-threaded

The fastest and cross-platform subdomain enumerator

Proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization

Burp Suite plugin to detect and exploit Java deserialization vulnerabilities

JBoss (and others Java Deserialization Vulnerabilities) Verification and Exploitation Tool

FestIn - S3 Bucket Weakness Discovery

Security testing tool for S3 buckets