1206 Open source projects that are alternatives of or similar to flydns

Pentest: Subdomains enumeration tool for penetration testers.

A Tool for Domain Flyovers

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

HostHunter a recon tool for discovering hostnames using OSINT techniques.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

This challenge is Inon Shkedy's 31 days API Security Tips.

Intelligence and Reconnaissance Package/Bundle installer.

Semi-automatic OSINT framework and package manager

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

Making Favicon.ico based Recon Great again !

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

A tool to hunt for publicly accessible DigitalOcean Spaces

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

An automated approach to performing recon for bug bounty hunting and penetration testing.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

List of Awesome Asset Discovery Resources

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

Offensive tools as Dockerfiles. Lightweight & Ready to go

Do some quick reconnaissance on a domain-based web-application

Selenium powered Python script to automate searching for vulnerable web apps.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Nuubi Tools (Information-ghatering|Scanner|Recon.)

OneForAll是一款功能强大的子域收集工具

Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

Python library and CLI for the Bug Bounty Recon API

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

OSINT

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

An advanced tool for email reconnaissance

Links for the OSINT Team

A permutation generation tool written in golang

Yar is a tool for plunderin' organizations, users and/or repositories.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Maryam: Open-source Intelligence(OSINT) Framework

👀 Some of my favorite OSINT tools.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

An OSINT tool to find contacts in order to report security vulnerabilities.

🖖 Fast, modern, easy-to-use network scanner

Intelligence tool but without API key

Automated network asset, email, and social media profile discovery and cataloguing.

OSINT Project

In-depth Attack Surface Mapping and Asset Discovery

Sifter aims to be a fully loaded Op Centre for Pentesters

A passive subdomain finder

Enumerate information from NTLM authentication enabled web endpoints 🔎

all manner of wordlists

Snoop — инструмент разведки на основе открытых данных (OSINT world)

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

a recon tool that allows searching on URLs that are exposed via shortener services