702 Open source projects that are alternatives of or similar to Crosslinked

A high performance offensive security tool for reconnaissance and vulnerability scanning

onedrive user enumeration - pentest tool to enumerate valid onedrive users

In-depth Attack Surface Mapping and Asset Discovery

bingip2hosts is a Bing.com web scraper that discovers websites by IP address

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Yet Another LInkedIn Scraper...

Multi source CVE/exploit parser.

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Extract subdomains from SSL certificates in HTTPS sites.

Attack Surface Management Platform | Sn1perSecurity LLC

Intelligence and Reconnaissance Package/Bundle installer.

Search for Directory Traversal Vulnerabilities

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

A tool for fuzzing for ports that allow outgoing connections

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

Credentials Checking Framework

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

A MongoDB importer and API for Project Sonars DNS datasets

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

A tool to automate penetration tests

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Web path scanner

The Offensive Manual Web Application Penetration Testing Framework.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Relational database brute force and post exploitation tool for MySQL and MSSQL

Fully automated offensive security framework for reconnaissance and vulnerability scanning

wifi attacks suite

OneForAll是一款功能强大的子域收集工具

Python 3.5+ DNS asynchronous brute force utility

This program provides efficient web scraping services for Tor and non-Tor sites. The program has both a CLI and REST API.

A fast web directory/file enumeration tool written in Rust

Enumerate information from NTLM authentication enabled web endpoints 🔎

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

findCDN is a tool created to help accurately identify what CDN a domain is using.

CLI program that collects information from facebook user profiles via Selenium.

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

iOS/macOS/Linux Remote Administration Tool

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

⚠️WARNING: This project now become part of https://github.com/j3ssie/Metabigor project

Burp Suite extension to discover assets from HTTP response.

an asynchronous target enumeration tool

📱 🐟 An app to remote control SocialFish.

Network recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

Yar is a tool for plunderin' organizations, users and/or repositories.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

An OSINT tool to find contacts in order to report security vulnerabilities.

Guide, reference and cheatsheet on web scraping using rvest, httr and Rselenium.

Modules for expansion services, import and export in MISP

A unified console to perform the "kill chain" stages of attacks.

🔐 Docker Container for Penetration Testing & Security

A portable OSINT Swiss Army Knife for DFIR/OSINT professionals 🕵️ 🕵️ 🕵️

Pymeta will search the web for files on a domain to download and extract metadata. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions.

A ZigBee hacking toolkit by Bishop Fox

OSINT Project

An automated e-mail OSINT tool