3225 Open source projects that are alternatives of or similar to Hosthunter

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

Hunt down the secrets from the WebArchives for Fun and Profit

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

OSINT tool - gets data from services like shodan, censys etc. in one app

Everything needed for doing CTFs

Snoop — инструмент разведки на основе открытых данных (OSINT world)

The Offensive Manual Web Application Penetration Testing Framework.

Search people on the Internet.

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

Tool to automate common OSINT tasks

Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock

Burp Suite extension to discover assets from HTTP response.

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

A Github organization reconnaissance tool.

Undetectable & Xor encrypting with custom KEY (FUD Metasploit Rat) bypass Top Antivirus like BitDefender,Malwarebytes,Avast,ESET-NOD32,AVG,... & Automatically Add ICON and MANIFEST to excitable

My own OSCP guide

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.

A Tool for Domain Flyovers

An OSINT tool to find contacts in order to report security vulnerabilities.

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB.

OWASP D4N155 - Intelligent and dynamic wordlist using OSINT

Unique wordlist generator of unique wordlists.

all manner of wordlists

Hacker101 CTF Writeup

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

Offensive tools as Dockerfiles. Lightweight & Ready to go

🔎 Find usernames and download their data across social media.

Docker image for osint

Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.

Network recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Data leak checker & OSINT Tool

Collect email addresses by crawling search engine results.

Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.

Gosint is a distributed asset information collection and vulnerability scanning platform

Burp Extender plugin that generates a sitemap of a website using Wayback Machine

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.

Simple Python tool to check if there is an Office 365 instance linked to a domain.

Multi source CVE/exploit parser.

A script to configure a TP-Link MR3040 running OpenWRT into a simple, yet powerful penetration-testing "dropbox".

A Python Hacking Library consisting of network scanner, arp spoofer and detector, dns spoofer, code injector, packet sniffer, network jammer, email sender, downloader, wireless password harvester credential harvester, keylogger, download&execute, ransomware, data harvestors, etc.

Simple multi threaded tool to extract domain related data from commoncrawl.org

OSINT Framework

An Extended, Modulair, Host Discovery Framework

Quickly analyze and reverse engineer Android packages

A Linux packet crafting tool.

Social media hunter

ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.

👻Impost3r -- A linux password thief

Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques

This Python script can be used to bypass IP source restrictions using HTTP headers.

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

recon-ng modules for Censys

Find host header injections and perform Host Header attacks with other kind of bugs like web cache poissoning

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

Unleash the power of cloud