Find, verify, and analyze leaked credentials

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…

Quickly discover exposed hosts on the internet using multiple search engines.

Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.

Tool to bypass 403/40X response codes.

Go CLI and Library for quickly mapping organization network ranges using ASN information.

「🔑」A tool used to hunt down API key leaks in JS files and pages

EndExt is a .go tool for extracting all the possible endpoints from the JS files