Bug Bounty Recon — Tools And Resources

Thexssrat

·

Follow

1 min read

·

Apr 9, 2021

--

Share

General Tools

1. SubFinder
2. Findomain
3. Sublist3r
4. dnssearch
5. Sudomy
6. Assetfinder
7. Vita
8. PureDNS
9. GetAllUrls(GUA)

Frameworks

1. Amass
2. Sudomy
3. ReconFTW
4. DMitry

Dictionary attacks

1. knockPy
2. DNSRecon
3. MassDNS

Datasets

1. crt.sh
2. WaybackURLS
3. Google dork ‘cache:’ (unlike wayback machine , the google cache sometimes has some info that can be easily overlooked and if it’s available then it’s definitely automated) — Thank you HackerPrat

Permutation Scanning

1. AltDNS

DNS Databases

1. DNS Dumpster
2. Shodan
3. Pentest-tools
4. Rapid7 Forward DNS (FDNS)
5. Crobat
6. Subdomain finder by c99.nl