Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/YasserGersy/cazador_unr
Hacking tools
https://github.com/YasserGersy/cazador_unr
automation bugbounty bugcrowd bughunting csrf directory-lister dns fuzzing hackerone hacking http information-gathering-tools owasp poc pocgenerator rce sqli subdomains tcp xss
Last synced: about 2 months ago
JSON representation
Hacking tools
- Host: GitHub
- URL: https://github.com/YasserGersy/cazador_unr
- Owner: YasserGersy
- Created: 2019-06-22T21:27:11.000Z (over 5 years ago)
- Default Branch: master
- Last Pushed: 2024-11-07T04:48:15.000Z (2 months ago)
- Last Synced: 2024-11-07T05:30:21.707Z (2 months ago)
- Topics: automation, bugbounty, bugcrowd, bughunting, csrf, directory-lister, dns, fuzzing, hackerone, hacking, http, information-gathering-tools, owasp, poc, pocgenerator, rce, sqli, subdomains, tcp, xss
- Homepage:
- Size: 93.4 MB
- Stars: 142
- Watchers: 9
- Forks: 51
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- Security: SECURITY.md
Awesome Lists containing this project
- awesome-hacking-lists - YasserGersy/cazador_unr - Hacking tools (Others)
README
[](https://gitter.im/cazadorapp/community?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge)
[](https://github.com/YasserGersy/cazador_unr/issues)
[](https://github.com/YasserGersy/cazador_unr/)
[](https://github.com/YasserGersy/cazador_unr/)
[](https://twitter.com/intent/tweet?original_referer=https%3A%2F%2Fdeveloper.twitter.com%2Fen%2Fdocs%2Ftwitter-for-websites%2Ftweet-button%2Foverview&ref_src=twsrc%5Etfw&text=Cazador%20-%20Automated%20Pentest%20Recon%20Scanner&tw_p=tweetbutton&url=https%3A%2F%2Fgithub.com%2FYasserGersy%2Fcazador_unr)
[](https://twitter.com/intent/follow?screen_name=YasserGersy)
# Tools
*Listeners*
- HTTP Server
- DNS Server
- TCP Server
- POSTMessage Hooker
- Websocket Hooker
*Analyzers*
- HTTP
- JS-Files
- FileSystem
- Binary
- Packet
*Net Tools*
- Get DNS Records
- Resolve Hosts
- Reverse IPs
- Passive DNS
- DNS History
*Text Tools*
- Text Processing
- Block construct
- Format generator
- pattern creation
- Encrypt/Decrypt data
- Hash Identification
- Crackers
- Payload Generators
- Encoders/Decoders
- Poc Generators (Python , bash , HTML)
*Recon*
- Get Websites ScreenShots
- GET Subdomains (Scrabbing , Mining , DNS-brute-force,Http-brute-force)
- Site categorizer
- s3/GC bucket enumeration
- Github Lister
- Ip History
*Scanners*
- Detect Misconfiguration
- Port/vulnerability/ssl scanner
- Vulnerability Exploiters
- Waf Detection
*Scrabbers*
- Download Android apps (APK)
- Travis-CI logs fetching
*Tools discussed separately* [here](https://github.com/YasserGersy/cazador_unr/tree/master/doc)
[scanner]
[TcpListener]
[FileMiner]
[Subscrabber]
[Hpinger]
**if the app is not working properly , Download the missing dlls, put them in application folder , beside the executable file**
**Some notes:**
- This tool is meant primarily for bug hunters (specially beginners).
- This tool is not backdoored with any malicious software/tracking .
- Memory is not carefully managed so be carefull , do not use all the tools at the same time , Consider to make targets and threads less than 1000.
- Do not use it illegally
- Some Tools are disabled by default , you could enable any by setting debug mode to true
- Many third-parties are used without permission no APIS used.
- The source code is not published because the tool is a beta and the code is uggly and worse than my handwriting.
- Project is planned to be open-source with the first release.
- Suggestions are deeply welcome.
- Credits are reserved for all authors and third-parties.
- Feel free to push any issue
**Linked IN**
- https://blog.intigriti.com/2019/07/02/bugbytes-25-to-scan-or-not-to-scan-gotcha-and-live-mentoring-by-zseano/
- https://pentester.land/newsletter/2019/07/02/the-5-hacking-newsletter-60.html
- https://securitytraning.com/bugbounty-with-cazador/
Happy Automating