Digging Deeper....
-
Updated
Jun 24, 2026 - Go
Digging Deeper....
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
An OSINT tool to quickly extract IP and URL endpoints from APKs by disassembling and decompiling
A fast and minimal JS endpoint extractor
Sasori is a dynamic web crawler powered by Puppeteer, designed for lightning-fast endpoint discovery.
This is the open sourced code for the extension, EndPointer
A powerful tool designed for identifying hidden endpoints and sensitive information within JavaScript files on a website.
A Simple Tool to Find Shells and Some Interesting Endpoints in Websites
Docker image to auto register all the swarm nodes in portainer
An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.
Intelligence-driven reconnaissance framework for bug bounty hunters and security professionals.
How To approach recon on real targets — from passive enumeration to origin IP discovery. Covers tools, automation, and the logic behind each phase.
Chrome MV3 extension that auto-discovers JS endpoints and parameter keys from code and network traffic
Draw network topology based on cisco switches . End result is : we get on each port endpoint's mac address , map it on ip address and finaly obtain name by manually created table.
a python script that automates recon flow for a given target domain.
EndpointHunter is a powerful bug bounty tool designed to hunt and extract API endpoints, LFI paths, secrets, and cloud storage URLs from JS, CSS, and HTML files. It's built for efficiency, supporting multi-threaded scanning and seamless integration with other popular recon tools.
⚡ JavaScript-aware crawler for security researchers and bug bounty hunters. Extract hidden endpoints and internal subdomains through static and semantic analysis of JS files. Lightweight. Fast. Sneaky.
Fast web reconnaissance tool for security professionals - endpoint discovery, parameter analysis, and deep content inspection
Tool to generate a tree from a list of urls with color for each nodes.
🎯 A powerful API reconnaissance and documentation tool for security testing. Discovers hidden endpoints via Wayback Machine, CommonCrawl, and JS parsing. Generates OpenAPI/Swagger & Postman collections for automated security analysis.
Add a description, image, and links to the endpoint-discovery topic page so that developers can more easily learn about it.
To associate your repository with the endpoint-discovery topic, visit your repo's landing page and select "manage topics."