774 Open source projects that are alternatives of or similar to Autosint

The best Hacking and PenTesting tools installer on the world

A swiss army knife for pentesting networks

Study Notes For Web Hacking / Web安全学习笔记

mXtract - Memory Extractor & Analyzer

Generate markdown documentation from jsdoc-annotated javascript

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Pretty UI for Swagger spec

An Instagram Open Source Intelligence Tool

Subdomain Takeover tool written in Go

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

OSINT tool to find breached emails, databases, pastes, and relevant information

Amazon S3 bucket spelunking!

Directory/File, DNS and VHost busting tool written in Go

Elasticsearch for Offensive Security

NetCat for Windows

Penetration Testing notes, resources and scripts

A tool to test security of json web token

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Handbook of information collection for penetration testing and src

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

Fast web fuzzer written in Go

Script samples from the book Pentesting Azure Applications (2018, No Starch Press)

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

A curated list of awesome OSCP resources

Python3 script to parse txt files containing Mimikatz output

Interactive Network Scanner

Search and browse documents and data; find the people and companies you look for.

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

DNS Rebinding Exploitation Framework

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

Quickly analyze and reverse engineer Android packages

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Sane and flexible OpenAPI 3 schema generation for Django REST framework.

Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers

Extract endpoints from APK files

A service that can track data breaches like "Have I Been Pwned", but it is specific for Taiwan.

A wrapper for Nmap to quickly run network scans

OSINT tool - gets data from services like shodan, censys etc. in one app

The Offensive Manual Web Application Penetration Testing Framework.

RESTful API 文档生成工具，支持 Go、Java、Swift、JavaScript、Rust、PHP、Python、Typescript、Kotlin 和 Ruby 等大部分语言。

OSINT tools catalog

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB.

用于记录企业安全规划，建设，运营，攻防的相关资源

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

A simple dns resolver of dns-record and web-record log server for pentesting

Mining parameters from dark corners of Web Archives

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

😱 A curated list of amazingly awesome OSINT

People tracker on the Internet: OSINT analysis and research tool by Jose Pino

A tool to abuse Exchange services

A Python3 based single-file subdomain enumerator