My own personal dockerfile and configs that I use for bug bounties.
git clone https://github.com/highjack/technodrome.git
cd technodrome
./run.sh
- zsh (with ohmyzsh)
- tool binaries added to $PATH
- Downloads wordlists from seclists and pathbrute onto "wordlists" volume
- Sublist3r
- amass
- massdns
- findomain
- shuffledns
- altdns
- assetfinder
- masscan
- naabu
- gowitness
- scrying
- webanalyze
- retire
- httpx
- feroxbuster
- dirsearch
- gospider
- hakrawler
- LinkFinder
- GoLinkFinder
- chaos requires api key to be set in ./configs/env
- getJS
- linx
- ParamPamPam
- Arjun
- ParamSpider
- ffuf
- commix
- Corsy
- crlfuzz
- CRLF-Injection-Scanner
- Injectus
- liffy
- FDsploit
- dotdotpwn
- GraphQLmap
- shapeshifter
- clairvoyance
- headi
- Oralyzer
- dom-red
- http-request-smuggling
- smuggler
- h2csmuggler
- nuclei with templates
- metasploit
- VHostScan
- gau
- brutespray
- dnsvalidator
- git-dumper
