Compute MurmurHash3 (Shodan) + MD5 (Censys) of a favicon. Two modes: URL (fetch — needs CORS-permissive origin) or file upload (always works, save the favicon locally first).
Click through to BGP / ASN explorers, then pivot Shodan / FOFA / Censys by ASN.
Generates dev/staging/typo permutations of the target. Click any to swap target.
Paste H1 structured_scope JSON, Bugcrowd asset list, or one domain per line. Out-of-scope items are skipped. Click a chip to set as target. "Run on all" opens the current category × every target (max 50 tabs, requires confirm).
Paste JS file content (or a URL — it will fetch). Extracts endpoints, secrets and revealing comments. 100% local regex.
Fetches Wayback CDX for *.{target}/* with query strings since 2018, extracts unique parameter names, sorts by frequency, downloads as params-{target}-{date}.txt ready for ffuf/burp.
Browse upstream GHDB by category, or run a curated still-working dork against your current target.