1148 Open source projects that are alternatives of or similar to Finalrecon

Information gathering & website reconnaissance | https://phishstats.info/

WeirdAAL (AWS Attack Library)

今日头条机器人，支持用户登陆、关注、取消关注、获取关注粉丝、发文、发悟空问答、点赞、评论、采集各种类型新闻讯息等，使用今日头条网页版API实现

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

Wordpress Attack Suite

shuffleDNS is a wrapper around massdns written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.

🌭💦 91porn爬虫在线无限制API接口（永久有效，口令每日更新） 及 在线web预览

THE ESP8266 HONEYPOT

LinkedIn Scraper (currently working 2020)

A (partial) Python rewriting of PowerSploit's PowerView

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Simple yet powerful automation stuffs.

知乎模拟登录，支持提取验证码和保存 Cookies

mXtract - Memory Extractor & Analyzer

A Smart, Automatic, Fast and Lightweight Web Scraper for Python

tcp connection hijacker, rust rewrite of shijack

Python的基础练习代码与各种爬虫代码

golang实现的爬虫框架，使用者只需关心页面规则，提供web管理界面。基于colly开发。

Important security headers for koa

Fast and versatile Adapter for RecyclerView which regroups several features into one library to considerably improve the user experience :-)

Handbook of information collection for penetration testing and src

An automated approach to performing recon for bug bounty hunting and penetration testing.

A self-service password management tool for Active Directory

Crawl BookCorpus

[ Admin panel finder / Admin Login Page Finder ] ¢σ∂є∂ ву 👻 (❤-❤) 👻

Free Web Scraping Tool with Java

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Html网页正文提取

📰 A responsive interface of Hacker News with summaries and thumbnails.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Easily create XML sitemaps for your website.

API of DouYin for Humans used to Crawl Popular Videos and Musics

Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)

fireELF - Fileless Linux Malware Framework

Dark Web OSINT Tool

HTTP API for Scrapy spiders

Create private keys and certificates with node.js

Tactics, Techniques, and Procedures

Automatically Launch Google Hacking Queries Against A Target Domain

Web Application Security Scanner Framework

A search application to explore, discover and share online files

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

line-bot-tutorial use python flask

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

A tool for logging data/testing devices with a Wiegand Interface. Can be used to create a portable RFID reader or installed directly into an existing installation. Provides access to a web based interface using WiFi in AP or Client mode. Will work with nearly all devices that contain a standard 5V Wiegand interface. Primary target group is 26-37bit HID Cards. Similar to the Tastic RFID Thief, Blekey, and ESPKey.

本项目不再维护，详情可加群了解 https://t.me/onecomicbook

The blueprint HTML and CSS for 17+ website headers

Fess is very powerful and easily deployable Enterprise Search Server.

Notes for taking the OSCP in 2097. Read in book form on GitBook

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

A curated list of awesome OSCP resources

Collection of pentesting scripts

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

A collection of awesome web crawler,spider in different languages

Easy files and payloads delivery over DNS

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.