-
-
Save helcaraxeals/6b2e608658bb6586e45dd56577dc1a1f to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #find sub domain | |
| @Identify IPs and main TLDs | |
| ASNs (http://bgp.he.net) | |
| Reverse Whois (https://whois.arin.net , https://reverse.report/ , http://domainbigdata.com/ , http://viewdns.info/ ,https://apps.db.ripe.net/db-web-ui/#/fulltextsearch) | |
| Acquisitions (https://www.crunchbase.com/search/acquisitions) | |
| Trademarks | |
| Shodan (shodan.io) | |
| https://censys.io | |
| https://www.zoomeye.org/ | |
| crt.sh (%.site.com) | |
| https://github.com/anshumanbh/brutesubs | |
| https://github.com/mandatoryprogrammer/cloudflare_enum | |
| https://github.com/TheRook/subbrute | |
| https://github.com/blechschmidt/massdns | |
| https://gist.github.com/jhaddix/86a06c5dc309d08580a018c66354a056 (wordlist DNS) | |
| https://github.com/jfrancois/SDBF | |
| sublister | |
| gobuster | |
| https://github.com/vysecurity/DomLink | |
| https://builtwith.com | |
| https://github.com/blechschmidt/massdns | |
| https://github.com/sa7mon/S3Scanner | |
| ########################################## | |
| https://github.com/nahamsec/bbht | |
| https://github.com/nahamsec/lazyrecon | |
| ########################################## | |
| github amazonaws.com uber | |
| ###########Leak ############################################## | |
| gitrob | |
| git-all-secrets | |
| truffleHog | |
| git-secrets | |
| repo-supervisor | |
| #AWS SS3 | |
| site:s3.amazonaws.com inurl:site | |
| sandcastle (https://github.com/0xSearches/sandcastle) | |
| https://github.com/nahamsec/lazys3 | |
| #Dork: | |
| site.com +inurl:dev -cdn | |
| site:site.com -www.site.com -www.sanbox | |
| @Permutation scanning & Portscan | |
| nmap -sS -A -PN -p- --script=http-title site.com | |
| Altdns | |
| Sdbf | |
| nmap | |
| masscan | |
| @Visual Identification | |
| eyewitness | |
| @AUXiliary | |
| spider | |
| Github | |
| @Platform Identification | |
| Builtwith | |
| Wappalyzer | |
| Vulners Burp Plugin | |
| @Content Discovery | |
| #Mapping | |
| retire.js | |
| SVN | |
| git (https://github.com/arthaud/git-dumper.git , https://github.com/michenriksen/gitrob ) | |
| RAFT lists | |
| Wapplyzer | |
| Xssed.com | |
| intrigue (https://github.com/intrigueio/intrigue-core) | |
| https://github.com/cure53/Flashbang | |
| Gobuster | |
| Wordlists | |
| Burp | |
| @Parameter discovery | |
| https://github.com/s0md3v/Arjun | |
| Parameth | |
| Burp analyze target | |
| https://github.com/epinna/tplmap.git | |
| https://github.com/jhaddix/domain | |
| #Port scanner: | |
| #Testing | |
| #WAF | |
| tip | |
| ww1,ww2,ww3, ... site.com | |
| x.sub.y.com | |
| x-sub.y.com | |
| #SQL | |
| SLEEP(1) /*‘ or SLEEP(1) or ‘“ or SLEEP(1) or “*/ | |
| #SSL | |
| https://github.com/arvinddoraiswamy/mywebappscripts/tree/master/ForceSSL | |
| #IOS | |
| idb tool (https://github.com/dmayer/idb) | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment