subdomain

In-depth Attack Surface Mapping and Asset Discovery

OneForAll是一款功能强大的子域收集工具

Dedicated to JavaScript and its awesome community since 2015

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

In-depth Attack Surface Mapping and Asset Discovery

无状态子域名爆破工具

Subdomain Takeover tool written in Go

A DNS reconnaissance tool for locating non-contiguous IP space.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Grab your own sweet-looking '.is-a.dev' subdomain

🔓 Subdomain enumeration and information gathering tool

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

A Domain Name & Email Address Collection Tool

Lion is a fast HTTP router for building modern scalable modular REST APIs in Go

A Powerful Subdomain Takeover Tool

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

A new generation of tool for discovering subdomains( ip , cdn and so on)

A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件

Handbook of information collection for penetration testing and src

Intelligence tool but without API key

DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

Ladon for Cobalt Strike & Cracked Download,Large Network Penetration Scanner, vulnerability / exploit / detection / MS17010 / password/brute-force/psexec/atexec/sshexec/webshell/smbexec/netcat/osscan/netscan/struts2Poc/weblogicExp

A rapid API for the Project Sonar dataset

Python 3.5+ DNS asynchronous brute force utility

JavaScript API to work easily with complex domain names, subdomains and well-known TLDs.

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.