AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality revolves around searching for domain-related data, including domain emails, domain credentials, CIDRs , ASNs , and subdomains, the tool also allows users to search Google Play application ID.

WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted servers via zone transfer data - stores their responses, and lets you query for known web technologies, including those with zero-day vulnerabilities.

Site-Scanner - Web application vulnerability assessment tool.

Seekolver is a tool focused on attack-surface mapping. It performs searches for subdomains associated with root domains and root domains associated with organisations using open sources, additionally, it resolves these domains and subdomains in search of HTTP and HTTPS services and then filters the information obtained based on their response.

ssb=simple subdomain bruteforcer

A comprehensive all-in-one Python-based Proof of Concept script to discover and exploit a critical authentication bypass vulnerability (CVE-2024-55591) in certain Fortinet devices.

Tool for automated scanning of the common vulnerabilities of company subdomains

Yet another CF Enumeration tool

CollectJuices is a powerful tool designed to automate the process of fetching, analyzing, and recursively processing JavaScript files to discover URLs and secrets. Leveraging the capabilities of the JSluice tool and advanced Python libraries, CollectJuices is an essential tool for cybersecurity professionals.

Brute force attack script for penetration testing on gmail accounts based on python.

Independent verification that the QR Codes displayed by the Cobo Vault to the Cobo App during pairing do not leak secrets.

Attack Surface Trend & Risk Analytics

Module for discovering the attack surface of a vulnerable program 🤺

Part security toolkit, part AI prompt engine, and part character-driven operating narrative

ThreatSight is an advanced Python-based network scanning tool that automates security assessments by combining Nmap's powerful scanning engine with automated vulnerability correlation and risk prioritization. Designed for security teams and network administrators, it transforms raw scan data into actionable security insights.