1218 Open source projects that are alternatives of or similar to Favfreak

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Python library and CLI for the Bug Bounty Recon API

HostHunter a recon tool for discovering hostnames using OSINT techniques.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

OneForAll是一款功能强大的子域收集工具

👀 Some of my favorite OSINT tools.

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

An OSINT tool to gather information about the real owner of a phone number

OSINT

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Related subdomains finder

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

A passive subdomain finder

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

A tool to fastly get all javascript sources/files

A high performance offensive security tool for reconnaissance and vulnerability scanning

Enumerate information from NTLM authentication enabled web endpoints 🔎

Pentest: Subdomains enumeration tool for penetration testers.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

E-mails, subdomains and names Harvester - OSINT

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.

This repository created for personal use and added tools from my latest blog post.

my oscp prep collection

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

A tool to hunt for publicly accessible DigitalOcean Spaces

An automated target reconnaissance pipeline.

In-depth Attack Surface Mapping and Asset Discovery

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

An automated approach to performing recon for bug bounty hunting and penetration testing.

🔎 Hunt down social media accounts by username across social networks

OSINT Project

Intelligence and Reconnaissance Package/Bundle installer.

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

Unique wordlist generator of unique wordlists.

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

Automated network asset, email, and social media profile discovery and cataloguing.

Find emails of Github users

swiss army knife for hackers

network reconnaissance toolkit

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

apkizer is a mass downloader for android applications for all available versions.

Maryam: Open-source Intelligence(OSINT) Framework

Information gathering tool - OSINT

Gosint is a distributed asset information collection and vulnerability scanning platform

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Nuubi Tools (Information-ghatering|Scanner|Recon.)

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

🔎 Find usernames across social networks

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

List of Awesome Asset Discovery Resources