csprecon
Domain scanner
Tools for discovering new target domains using Content Security Policy
Discover new target domains using Content Security Policy
385 stars
7 watching
46 forks
Language: Go
last commit: 2 months ago
Linked from 1 awesome list
bounty-huntingbugbountybugbounty-toolcontent-security-policycspgolanghackinghacktoberfestinformation-retrievaloffensive-securityoffensivesecurityreconrecon-toolreconnaissancesecuritysecurity-tools
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
| edoardottt/cariddi | A tool for crawling and scanning websites for sensitive information such as endpoints, secrets, and tokens. | 1,551 |
| edoardottt/scilla | An information gathering tool for network reconnaissance and vulnerability scanning. | 951 |
 codingo/reconnoitre | Automates reconnaissance and service enumeration of network hosts to gather information and write recommendations for further testing. | 2,124 |
 threatexpress/domainhunter | Tools for identifying suitable domains for malicious activities | 1,554 |
 gossithedog/threathunting | Tools and rules for detecting malicious domain calls in endpoint malware | 570 |
 globocom/huskyci | Automated security testing and analysis tool | 579 |
 codeexpress/respounder | A tool that detects compromised machines by exploiting the lack of LLMNR name resolution in non-adversarial networks. | 316 |
 danmcinerney/fast-recon | Automates the process of searching for sensitive files using Google dorks on a given domain | 163 |
 mr-un1k0d3r/catmyphish | A tool used to search for and categorize expired domains that can be used during red teaming engagements. | 439 |
 we5ter/gsdf | A tool for searching domains using Google's SSL certificate transparency data | 176 |
 esc4icescesc/skanuvaty | A fast and concurrent DNS/network scanner that identifies subdomains and their corresponding IPs. | 890 |
 hightechsec/git-scanner | Tools for identifying and scanning public Git repositories for security vulnerabilities | 341 |
 gosecure/csp-auditor | Analyzes and configures website security policies to prevent malicious scripts from running on user devices. | 138 |
 boostsecurityio/poutine | Detects misconfigurations and vulnerabilities in software supply chains during build pipelines. | 239 |
 darryllane/bluto | Tools for gathering information about and exploiting vulnerabilities in domains | 620 |