581 Open source projects that are alternatives of or similar to Censys Subdomain Finder

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

Awesome cloud enumerator

Open Redirect Payloads

A tool for logging data/testing devices with a Wiegand Interface. Can be used to create a portable RFID reader or installed directly into an existing installation. Provides access to a web based interface using WiFi in AP or Client mode. Will work with nearly all devices that contain a standard 5V Wiegand interface. Primary target group is 26-37bit HID Cards. Similar to the Tastic RFID Thief, Blekey, and ESPKey.

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

OSINT

Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension

Overlord - Red Teaming Infrastructure Automation

network visualization & vulnerability management/reporting

Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

A tool to automate penetration tests

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

Selenium powered Python script to automate searching for vulnerable web apps.

Extract subdomains from SSL certificates in HTTPS sites.

Port scanning and domain utility.

👻Impost3r -- A linux password thief

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft (Azure), Oracle (Cloud) and DigitalOcean with daily updates.

Extract server and IP address information from Browser SSRF

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

Implementation of Wappalyzer in Python

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

A OSINT tool to obtain a target's phone number just by having his email address

Data analysis and OSINT framework for Twitter

😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with Apache Tomcat default credentials.

A quick way to gather all the metadata about a video, playlist, or channel from the YouTube API.

Collect OSINT from git repositories

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

GREP FOR OSINT is a set of very simple shell scripts that will help you quickly analyze a text or a folder with files for data useful for investigation (phone numbers, bank card numbers, URLs, emails and nicknames).

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.

network reconnaissance toolkit

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

Tenssens framework focused on gathering information from free tools or resources. The intention is to help people find free OSINT resources.

Web Extension for Firefox/Chrome/MS Edge and CLI tool to save a faithful copy of an entire web page in a single HTML file

An extendable tool to extract and aggregate IoCs from threat feeds

Web Recon & Exploitation Tool.

Osint tool based on namechk.com for checking usernames on more than 100 websites, forums and social networks.

Crawler (Bot) searching for credential leaks on different paste sites.

Defanged Indicator of Compromise (IOC) Extractor.

Do some quick reconnaissance on a domain-based web-application

Collection of best practices to add OSINT into MISP and/or MISP communities

Tool Information Gathering Write By Python.

Open Redirect scanner - (out of date)

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

swiss army knife for hackers

A MongoDB importer and API for Project Sonars DNS datasets

Unofficial Command Line Interface for OpenCorporates

Yet Another PHP Shell - The most complete PHP reverse shell

Search for Directory Traversal Vulnerabilities

No description or website provided.

THIS IS A CLI VERSION OF THE CHEAT SHEET FOR EASY ACCESS. IT CAN BE NAVIGATED WITHOUT USING COMMANDS.

用于记录企业安全规划，建设，运营，攻防的相关资源

Generates combination of domain names from the provided input.

Information Gathering Instagram.

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories: www.shhgit.com

Censys Maltego transforms! Take advantage of Censys transforms for Maltego to back your investigations with the most trusted Internet data available.

Feel the power of the Manifest V3. The future, right now!

A REST API security testing framework.