1225 Open source projects that are alternatives of or similar to Buster

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Pentest: Subdomains enumeration tool for penetration testers.

Links for the OSINT Team

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

A Tool for Domain Flyovers

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

my oscp prep collection

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

A tool to hunt for publicly accessible DigitalOcean Spaces

List of Awesome Asset Discovery Resources

🔐 Docker Container for Penetration Testing & Security

Multi source CVE/exploit parser.

Sifter aims to be a fully loaded Op Centre for Pentesters

internet monitoring osint telegram bot for windows

Enumerate information from NTLM authentication enabled web endpoints 🔎

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

E-mails, subdomains and names Harvester - OSINT

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Python library and CLI for the Bug Bounty Recon API

A toolkit for Security Researchers

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

Collect email addresses by crawling search engine results.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

recon-ng modules for Censys

Wireshark Cheat Sheet

OSINT Project

Related subdomains finder

Collection of several DDos tools.

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

🔑 Hash type identifier (CLI & lib)

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

Search Google and download specific file types

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

A curated list of awesome infosec courses and training resources.

Get GTFOBins info about a given exploit from the command line

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Argus Advanced Remote & Local Keylogger For macOS and Windows

The official wrapper for spyse.com API, written in Go, aimed to help developers build their integrations with Spyse.

Burp extension to decode NTLM SSP headers and extract domain/host information

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Threat Hunting queries for various attacks

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

WebMap-Nmap Web Dashboard and Reporting

A concise, directive, specific, flexible, and free incident response plan template

OneForAll是一款功能强大的子域收集工具

Nuubi Tools (Information-ghatering|Scanner|Recon.)

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

Offensive Reverse Shell (Cheat Sheet)

Totally Insecure Web Application Project (TIWAP)

A collection of resources I'm using while working toward the OSCP

Hacking, pen-testing, and cyber-security related tools built with Python.

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.