Technology cybersecurity bug bounty infosec pentesting Software Development Information Security Vulnerability scanning Web Application Pentesting Proxy Subdomain Enumeration Web Spidering Directory Fuzzing Fingerprinting Recon Tools Email Tools Exploit Searching Sensitive Data Detection
Lohitaksh Nandan
Lohitaksh Nandan

@NandanLohitaksh

5 Tweets 12 reads Aug 18, 2022
Twitter
Recon Tools for Web Application Pentesting... :)
Credits ~ Khalid Maina
A Thread ๐Ÿงต โ†“
#cybersecurity #infosec #pentesting #bugbounty
Proxy
- burpsuite
- zap proxy
Subdomain
- subfinder
- assetfinder
- amass
- sublist3r
- dig
- chaos (chaos.projectdiscovery.io)
Webspidering
- gospider
- gau
- linkfinder
- waybackurls
- hakrawler
- paramspider
Directory/fuzzing
- ffuf
- wfuzz
- gobuster
- dirbuster
chaos.projectdiscovery.io
Fingerprinting
- wappalyzer
- builtwith
- netcraft
- whatweb
- wafw0f
Vulnerability
- nuclei
- wpscan
- nikto
Email
- mxtoolbox
- emkei
- anonymailer
- thunderbird
Exploit
- searchsploit
- exploitdb
Sensitive data
- trufflehog
- gitsecrets
Api
- postman
- graphqlmap
Payloads/wordlists
- swisskeyrepo
- seclists
Ports
- nmap
- masscan
- zmap
- smap
- hackertarget
Ssl
- sslscan
- sslhopper
Search Engines
- shodan
- censys
- zoomeye
- google
Misc
- httpx
- metasploit
- dnsdumpster
- httprobe
- recon-ng
- securitytrails
Retweet to let others know... :)
Thanks!

Categories

Technology cybersecurity bug bounty infosec pentesting Software Development Information Security Vulnerability scanning Web Application Pentesting Proxy Subdomain Enumeration Web Spidering Directory Fuzzing Fingerprinting Recon Tools Email Tools Exploit Searching Sensitive Data Detection

Some tweets missing

Loading suggestions...