Enumerate information from NTLM authentication enabled web endpoints 🔎
Extracting URLs of a specific target based on the results of "commoncrawl.org"
Download pictures (or videos) along with their captions and other metadata from Instagram.
I See You
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation and geolocation lookup tool / Traceroute server
The OSINT Omnibus (beta release)
A helper to run OSINT queries & manage results continuously
LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.
This tool gives information about the phone number that you entered.
OSINT username checker. Collect a dossier on a person by username from a huge number of sites.
Don't Just Search OSINT. Sweep It.
An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.
LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.
Git Vuln Finder
Finding potential software vulnerabilities from git commit messages
An OSINT tool to find contacts in order to report security vulnerabilities.
A passive subdomain finder
#OSINT tool for finding Github repositories by extracting commit logs in real time from the Github event API
Burp Extender plugin that generates a sitemap of a website using Wayback Machine
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
Modules for expansion services, import and export in MISP
A portable OSINT Swiss Army Knife for DFIR/OSINT professionals 🕵️ 🕵️ 🕵️
An automated e-mail OSINT tool
A Github organization reconnaissance tool.
OSINT Tool to find Breached Credit Cards Information
Discover internet-wide misconfigurations while drinking coffee
MISP trainings, threat intel and information sharing training materials with source code
Twitter Intelligence OSINT project performs tracking and analysis of the Twitter
⚠️WARNING: This project now become part of https://github.com/j3ssie/Metabigor project
Intelligence and Reconnaissance Package/Bundle installer.
Network recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!
Yar is a tool for plunderin' organizations, users and/or repositories.
A high performance offensive security tool for reconnaissance and vulnerability scanning
Python library and CLI for the Bug Bounty Recon API
Venmo trasaction dataset for data analysis/visualization/anything
The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.
Find leaked emails with your passwords
Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock
Trace Labs OSINT Linux Distribution based on Kali.
Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.
Tool to automate common OSINT tasks
Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.
Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
A service that can track data breaches like "Have I Been Pwned", but it is specific for Taiwan.
A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
OnionSearch is a script that scrapes urls on different .onion search engines.
Paskto - Passive Web Scanner
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email