UrlextractorInformation gathering & website reconnaissance | https://phishstats.info/
Stars: ✭ 341 (+1264%)
Search4Search people on the Internet.
Stars: ✭ 151 (+504%)
FacebookBugFacebook Write-ups, PoC, and exploitation codes:
Stars: ✭ 28 (+12%)
YaSeekerYandex OSINT tool
Stars: ✭ 104 (+316%)
TtpsTactics, Techniques, and Procedures
Stars: ✭ 335 (+1240%)
ivreNetwork recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!
Stars: ✭ 2,712 (+10748%)
Dictionary Of PentestingDictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
Stars: ✭ 492 (+1868%)
CitadelCollection of pentesting scripts
Stars: ✭ 333 (+1232%)
getcontactFind info about user by phone number using GetContact API
Stars: ✭ 228 (+812%)
FinalreconThe Last Web Recon Tool You'll Need
Stars: ✭ 888 (+3452%)
TryHackMe-Write-UpThe entire walkthrough of all my resolved TryHackMe rooms
Stars: ✭ 53 (+112%)
Offensive DockerOffensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.
Stars: ✭ 328 (+1212%)
XposedOrNotXposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.
Stars: ✭ 120 (+380%)
InstagramosintAn Instagram Open Source Intelligence Tool
Stars: ✭ 484 (+1836%)
gHarvesterProof of concept for a security issue (in my opinion) that I found in accounts.google.com
Stars: ✭ 20 (-20%)
UdorkuDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications, and so on.
Stars: ✭ 326 (+1204%)
KaliIntelligenceSuiteKali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.
Stars: ✭ 58 (+132%)
Security whitepapersCollection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi
Stars: ✭ 644 (+2476%)
ReconnoteWeb Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters
Stars: ✭ 322 (+1188%)
flydnsRelated subdomains finder
Stars: ✭ 29 (+16%)
Juice ShopOWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Stars: ✭ 6,270 (+24980%)
IRIS🔍 IRIS: An open-source intelligence framework
Stars: ✭ 79 (+216%)
StegcrackerSteganography brute-force utility to uncover hidden data inside files
Stars: ✭ 396 (+1484%)
misp-osint-collectionCollection of best practices to add OSINT into MISP and/or MISP communities
Stars: ✭ 54 (+116%)
gitcolombo🧬 Extract and analyze contributors info from git repos
Stars: ✭ 55 (+120%)
PupyPupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python
Stars: ✭ 6,737 (+26848%)
OSINTBookmarksOSINT Bookmarks for Firefox / Chrome / Edge / Safari
Stars: ✭ 34 (+36%)
GetaltnameExtract subdomains from SSL certificates in HTTPS sites.
Stars: ✭ 320 (+1180%)
Web-IotaIota is a web scraper which can find all of the images and links/suburls on a webpage
Stars: ✭ 60 (+140%)
WhatbreachOSINT tool to find breached emails, databases, pastes, and relevant information
Stars: ✭ 472 (+1788%)
o365chkSimple Python tool to check if there is an Office 365 instance linked to a domain.
Stars: ✭ 37 (+48%)
AirgeddonThis is a multi-use bash script for Linux systems to audit wireless networks.
Stars: ✭ 3,830 (+15220%)
HabuHacking Toolkit
Stars: ✭ 635 (+2440%)
findcdnfindCDN is a tool created to help accurately identify what CDN a domain is using.
Stars: ✭ 64 (+156%)
OsintgramOsintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname
Stars: ✭ 312 (+1148%)
PwnedPasswordsCheckerSearch (offline) if your password (NTLM or SHA1 format) has been leaked (HIBP passwords list v8)
Stars: ✭ 52 (+108%)
GobusterDirectory/File, DNS and VHost busting tool written in Go
Stars: ✭ 5,356 (+21324%)
osintDocker image for osint
Stars: ✭ 92 (+268%)
WebanalyzePort of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.
Stars: ✭ 311 (+1144%)
Investigo🔎 Find usernames and download their data across social media.
Stars: ✭ 168 (+572%)
TorbotDark Web OSINT Tool
Stars: ✭ 821 (+3184%)
Leakfa.comA simple way to know if you are on the list of major security breaches like "HIBP", but it is specific for Iran.
Stars: ✭ 106 (+324%)
Aliens eyeSocial media hunter
Stars: ✭ 105 (+320%)
NetcatNetCat for Windows
Stars: ✭ 463 (+1752%)
Awesome-CyberSec-ResourcesAn awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)
Stars: ✭ 273 (+992%)
FuzzdictsWeb Pentesting Fuzz 字典,一个就够了。
Stars: ✭ 4,013 (+15952%)
CansinaWeb Content Discovery Tool
Stars: ✭ 709 (+2736%)
vulnerabilitiesList of every possible vulnerabilities in computer security.
Stars: ✭ 14 (-44%)
NmapIdiomatic nmap library for go developers
Stars: ✭ 391 (+1464%)
serverHashtopolis - A Hashcat wrapper for distributed hashcracking
Stars: ✭ 954 (+3716%)
SecurityExplainedSecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.
Stars: ✭ 301 (+1104%)
BusterAn advanced tool for email reconnaissance
Stars: ✭ 387 (+1448%)
juice-shop-ctfCapture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox
Stars: ✭ 287 (+1048%)
SocialscanPython library and CLI for accurately querying username and email usage on online platforms
Stars: ✭ 538 (+2052%)
Open Semantic SearchOpen Source research tool to search, browse, analyze and explore large document collections by Semantic Search Engine and Open Source Text Mining & Text Analytics platform (Integrates ETL for document processing, OCR for images & PDF, named entity recognition for persons, organizations & locations, metadata management by thesaurus & ontologies, search user interface & search apps for fulltext search, faceted search & knowledge graph)
Stars: ✭ 386 (+1444%)