Small collection of recon/OSINT helper scripts I use for bug bounties and CTFs. Nothing fancy, just stuff that saves me time.
DNS-based subdomain brute forcer. Threaded, no external services.
pip install dnspython
python3 subdomain_brute.py -d target.com -w wordlist.txt -o results.txtQuick HTTP security header audit. No deps beyond stdlib.
python3 header_check.py https://target.com- Wordlists: SecLists
- Use responsibly, only on systems you have permission to test.