1170 Open source projects that are alternatives of or similar to Gitgot

Semi-automatic OSINT framework and package manager

Intelligence and Reconnaissance Package/Bundle installer.

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Automated network asset, email, and social media profile discovery and cataloguing.

Discover Your Attack Surface!

Python 3.5+ DNS asynchronous brute force utility

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

E-mails, subdomains and names Harvester - OSINT

This repository created for personal use and added tools from my latest blog post.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Maryam: Open-source Intelligence(OSINT) Framework

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Enumerate information from NTLM authentication enabled web endpoints 🔎

Making Favicon.ico based Recon Great again !

A tool to hunt for publicly accessible DigitalOcean Spaces

👀 Some of my favorite OSINT tools.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

A high performance offensive security tool for reconnaissance and vulnerability scanning

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

List of Awesome Asset Discovery Resources

Fully automated offensive security framework for reconnaissance and vulnerability scanning

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Related subdomains finder

An automated target reconnaissance pipeline.

🆕 The Multi-Tool Web Vulnerability Scanner.

Network footprint scanner platform. Discover domains and run your custom checks periodically.

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

OneForAll是一款功能强大的子域收集工具

Bandit is a tool designed to find common security issues in Python code.

OSINT

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

Secure, Unified, Powerful and Extensible Rust Android Analyzer

🔎 shodansploit > v1.3.0

Find emails of Github users

Reconnaissance tool of Penetration test & Bug Bounty

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories: www.shhgit.com

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

Web application vulnerability scanner

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Links for the OSINT Team

An advanced tool for email reconnaissance

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

Sifter aims to be a fully loaded Op Centre for Pentesters

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

A Tool for Domain Flyovers

Simple Golang HTTPS/TLS Examples

Web Scan Lazy Tools - Python Package

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

Dark Web OSINT Tool