red-team-tools

Implement proven methodologies and tool workflows from top security researchers for effective reconnaissance, vulnerability discovery, and bug bounty hunting. Automate common tasks while maintaining thorough coverage of attack surfaces.

| Amass | Subdomain enumeration | | Subfinder | Fast subdomain discovery | | httpx/httprobe | Live host detection | | ffuf | Content discovery | | Nuclei | Vulnerability scanning | | Burp Suite | Manual testing | | Dalfox | XSS automation | | waybackurls | Historical URL mining |

| Rate limited | Use proxy rotation, reduce concurrency | | Too many results | Focus on specific technology stacks | | False positives | Manually verify findings before reporting | | Missing subdomains | Combine multiple enumeration sources | | API key errors | Verify keys in config files | | Tools not found | Install Go tools with go install |