Bug Bounty Methodology 2025: Tools, techniques, and steps to guide you through reconnaissance, enumeration, and testing.

Exploit Eye searches for vulnerabilities and exploits using keywords you specify. Get CVE details from NVD, working exploits from Exploit-DB, and security tools from GitHub - all in one tool. Searc…

A collection of awesome penetration testing resources, tools and other shiny things

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Directory/File, DNS and VHost busting tool written in Go

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

Fast subdomains enumeration tool for penetration testers

Nikto web server scanner

A Python tool that leverages the Shodan API and the CIRCL CVE API to scan a target IP for running products and flag critical vulnerabilities based on CVSS scores.

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

An Automated Subdomain Enumeration Tool

Fast and customizable subdomain wordlist generator using DSL

MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.

ProjectDiscovery's Open Source Tool Manager

A next generation HTTP client for Python. 🦋

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

List of Awesome Asset Discovery Resources

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

recon for bug hunters

Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.

All In One Web Recon

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

visualized crawler & ETL IDE written with C#/WPF

A Powerful Spider(Web Crawler) System in Python.

Rockyou for web fuzzing

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

Awesome XSS stuff