MegplusAutomated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
Stars: ✭ 268 (-72.2%)
sherlock🔎 Find usernames across social networks
Stars: ✭ 52 (-94.61%)
quick-recon.pyDo some quick reconnaissance on a domain-based web-application
Stars: ✭ 13 (-98.65%)
TorbotDark Web OSINT Tool
Stars: ✭ 821 (-14.83%)
PwnbackBurp Extender plugin that generates a sitemap of a website using Wayback Machine
Stars: ✭ 203 (-78.94%)
SitedorksSearch Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.
Stars: ✭ 221 (-77.07%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+119.29%)
I See YouISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.
Stars: ✭ 246 (-74.48%)
Awesome-CyberSec-ResourcesAn awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)
Stars: ✭ 273 (-71.68%)
o365chkSimple Python tool to check if there is an Office 365 instance linked to a domain.
Stars: ✭ 37 (-96.16%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (-85.27%)
XattackerX Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 897 (-6.95%)
H8mailEmail OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Stars: ✭ 2,163 (+124.38%)
webreconAutomated Web Recon Shell Scripts
Stars: ✭ 48 (-95.02%)
apkizerapkizer is a mass downloader for android applications for all available versions.
Stars: ✭ 40 (-95.85%)
go-spyseThe official wrapper for spyse.com API, written in Go, aimed to help developers build their integrations with Spyse.
Stars: ✭ 25 (-97.41%)
warfWARF is a Web Application Reconnaissance Framework that helps to gather information about the target.
Stars: ✭ 53 (-94.5%)
PulsarNetwork footprint scanner platform. Discover domains and run your custom checks periodically.
Stars: ✭ 314 (-67.43%)
VajraVajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Stars: ✭ 269 (-72.1%)
dirbpyThis is the new version of dirb in python
Stars: ✭ 36 (-96.27%)
targetsA collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.
Stars: ✭ 85 (-91.18%)
NatlasScaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.
Stars: ✭ 333 (-65.46%)
aquatoneA Tool for Domain Flyovers
Stars: ✭ 43 (-95.54%)
nuubiNuubi Tools (Information-ghatering|Scanner|Recon.)
Stars: ✭ 76 (-92.12%)
Salt ScannerLinux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration
Stars: ✭ 261 (-72.93%)
AsnipASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
Stars: ✭ 126 (-86.93%)
Reconspider🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Stars: ✭ 621 (-35.58%)
BanditBandit is a tool designed to find common security issues in Python code.
Stars: ✭ 3,763 (+290.35%)
ShhgitAh shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories: www.shhgit.com
Stars: ✭ 3,316 (+243.98%)
WsltoolsWeb Scan Lazy Tools - Python Package
Stars: ✭ 288 (-70.12%)
ReconnoteWeb Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters
Stars: ✭ 322 (-66.6%)
OneforallOneForAll是一款功能强大的子域收集工具
Stars: ✭ 4,202 (+335.89%)
PatrowlmanagerPatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Stars: ✭ 363 (-62.34%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (+263.38%)
TaipanWeb application vulnerability scanner
Stars: ✭ 359 (-62.76%)
Urlhuntera recon tool that allows searching on URLs that are exposed via shortener services
Stars: ✭ 934 (-3.11%)
ZenFind emails of Github users
Stars: ✭ 343 (-64.42%)
ApplicationinspectorA source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
Stars: ✭ 3,873 (+301.76%)
Censys Subdomain Finder⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
Stars: ✭ 402 (-58.3%)
OssaOpen-Source Security Architecture | 开源安全架构
Stars: ✭ 796 (-17.43%)
SuperSecure, Unified, Powerful and Extensible Rust Android Analyzer
Stars: ✭ 340 (-64.73%)
BusterAn advanced tool for email reconnaissance
Stars: ✭ 387 (-59.85%)
SifterSifter aims to be a fully loaded Op Centre for Pentesters
Stars: ✭ 403 (-58.2%)
PhoneinfogaPhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.
Stars: ✭ 5,927 (+514.83%)
EsdEnumeration sub domains(枚举子域名)
Stars: ✭ 785 (-18.57%)
SalusSecurity scanner coordinator
Stars: ✭ 441 (-54.25%)
EvilscanNodeJS Simple Network Scanner
Stars: ✭ 428 (-55.6%)
ThreatingestorExtract and aggregate threat intelligence.
Stars: ✭ 439 (-54.46%)
Shotlootera recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc
Stars: ✭ 451 (-53.22%)
YasuoA ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
Stars: ✭ 517 (-46.37%)
GasmaskInformation gathering tool - OSINT
Stars: ✭ 518 (-46.27%)
BurpaBurp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).
Stars: ✭ 427 (-55.71%)
GitrobReconnaissance tool for GitHub organizations
Stars: ✭ 5,256 (+445.23%)
Kube Scankube-scan: Octarine k8s cluster risk assessment tool
Stars: ✭ 566 (-41.29%)
SarenkaOSINT tool - gets data from services like shodan, censys etc. in one app
Stars: ✭ 120 (-87.55%)