tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+189.8%)
TheharvesterE-mails, subdomains and names Harvester - OSINT
Stars: ✭ 6,175 (+12502.04%)
Scilla🏴☠️ Information Gathering tool 🏴☠️ DNS / Subdomains / Ports / Directories enumeration
Stars: ✭ 116 (+136.73%)
SpiderfootSpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Stars: ✭ 6,882 (+13944.9%)
OneforallOneForAll是一款功能强大的子域收集工具
Stars: ✭ 4,202 (+8475.51%)
PhoneinfogaPhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.
Stars: ✭ 5,927 (+11995.92%)
Github ReconGitHub Recon — and what you can achieve with it!
Stars: ✭ 47 (-4.08%)
sherlock🔎 Find usernames across social networks
Stars: ✭ 52 (+6.12%)
querytoolQuerytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.
Stars: ✭ 104 (+112.24%)
SublertSublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
Stars: ✭ 699 (+1326.53%)
Ntlm challengerParse NTLM challenge messages over HTTP and SMB
Stars: ✭ 106 (+116.33%)
IntelspyPerform automated network reconnaissance scans
Stars: ✭ 134 (+173.47%)
DaProfilerDaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.
Stars: ✭ 58 (+18.37%)
phomberPhomber is infomation grathering tool that reverse search phone numbers and get their details, written in python3.
Stars: ✭ 59 (+20.41%)
GasmaskInformation gathering tool - OSINT
Stars: ✭ 518 (+957.14%)
Sub-DrillA very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
Stars: ✭ 70 (+42.86%)
AshokAshok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .
Stars: ✭ 109 (+122.45%)
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
Stars: ✭ 2,312 (+4618.37%)
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Stars: ✭ 86 (+75.51%)
evildorkEvildork targeting your fiancee👁️
Stars: ✭ 46 (-6.12%)
subdomainsEnumeratorA docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.
Stars: ✭ 63 (+28.57%)
FavfreakMaking Favicon.ico based Recon Great again !
Stars: ✭ 564 (+1051.02%)
DeadtrapAn OSINT tool to gather information about the real owner of a phone number
Stars: ✭ 73 (+48.98%)
Social AnalyzerAPI, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)
Stars: ✭ 8,449 (+17142.86%)
PdlistA passive subdomain finder
Stars: ✭ 204 (+316.33%)
RenginereNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+6918.37%)
DiscoverCustom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
Stars: ✭ 2,548 (+5100%)
recceDomain availbility checker
Stars: ✭ 30 (-38.78%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+6820.41%)
Sherlock🔎 Hunt down social media accounts by username across social networks
Stars: ✭ 28,569 (+58204.08%)
Recon-XAdvanced Reconnaissance tool to enumerate attacking surface of the target.
Stars: ✭ 27 (-44.9%)
Eyes👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️
Stars: ✭ 38 (-22.45%)
Badkarmanetwork reconnaissance toolkit
Stars: ✭ 353 (+620.41%)
Osint Tools👀 Some of my favorite OSINT tools.
Stars: ✭ 155 (+216.33%)
Investigo🔎 Find usernames and download their data across social media.
Stars: ✭ 168 (+242.86%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 1,572 (+3108.16%)
dorkscoutDorkScout - Golang tool to automate google dork scan against the entiere internet or specific targets
Stars: ✭ 189 (+285.71%)
ArgosThis script will automatically set up an OSINT workstation starting from a Ubuntu OS.
Stars: ✭ 73 (+48.98%)
graphw00fgraphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.
Stars: ✭ 260 (+430.61%)
PortforgeLightweight utility to fool port scanners
Stars: ✭ 23 (-53.06%)
E4GL30S1NTE4GL30S1NT - Simple Information Gathering Tool
Stars: ✭ 139 (+183.67%)
webreconAutomated Web Recon Shell Scripts
Stars: ✭ 48 (-2.04%)
SuperLibraryInformation Security Library
Stars: ✭ 60 (+22.45%)
adalancheActive Directory ACL Visualizer and Explorer - who's really Domain Admin?
Stars: ✭ 862 (+1659.18%)
NETNOOBA simple program written in bash that contains basic Linux network tools, information gathering tools and scanning tools.
Stars: ✭ 105 (+114.29%)
apkizerapkizer is a mass downloader for android applications for all available versions.
Stars: ✭ 40 (-18.37%)
asnapasnap aims to render recon phase easier by providing updated data about which companies owns which ipv4 or ipv6 addresses and allows the user to automate initial port and service scanning.
Stars: ✭ 28 (-42.86%)
SCANNER-INURLBRAdvanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.
Stars: ✭ 90 (+83.67%)
xforwardyHost Header Injection Scanner
Stars: ✭ 32 (-34.69%)
XposedOrNotXposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.
Stars: ✭ 120 (+144.9%)
rest-apiREST API backend for Reconmap
Stars: ✭ 48 (-2.04%)
GotandaGotanda is browser Web Extension for OSINT.
Stars: ✭ 149 (+204.08%)
STEWSA Security Tool for Enumerating WebSockets
Stars: ✭ 154 (+214.29%)
ad-privileged-auditProvides various Windows Server Active Directory (AD) security-focused reports.
Stars: ✭ 42 (-14.29%)
mqttinfoAttempts to determine the configuration, behavior, and type of a remote MQTT broker
Stars: ✭ 17 (-65.31%)
netizenshipa commandline #OSINT tool to find the online presence of a username in popular social media websites like Facebook, Instagram, Twitter, etc.
Stars: ✭ 33 (-32.65%)
ICP-CheckerICP备案查询,可查询企业或域名的ICP备案信息,自动完成滑动验证,保存结果到Excel表格,适用于2022年新版的工信部备案管理系统网站,告别频繁拖动验证,以及某站*工具要开通VIP才可查看备案信息的坑
Stars: ✭ 119 (+142.86%)