254 Open source projects that are alternatives of or similar to lazyGrandma

Pentest: Subdomains enumeration tool for penetration testers.

E-mails, subdomains and names Harvester - OSINT

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

OneForAll是一款功能强大的子域收集工具

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

GitHub Recon — and what you can achieve with it!

🔎 Find usernames across social networks

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Parse NTLM challenge messages over HTTP and SMB

Perform automated network reconnaissance scans

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

Phomber is infomation grathering tool that reverse search phone numbers and get their details, written in python3.

Information gathering tool - OSINT

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

A high performance offensive security tool for reconnaissance and vulnerability scanning

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Evildork targeting your fiancee👁️

A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.

Making Favicon.ico based Recon Great again !

An OSINT tool to gather information about the real owner of a phone number

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

A passive subdomain finder

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Unique wordlist generator of unique wordlists.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Domain availbility checker

Fully automated offensive security framework for reconnaissance and vulnerability scanning

🔎 Hunt down social media accounts by username across social networks

Advanced Reconnaissance tool to enumerate attacking surface of the target.

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

network reconnaissance toolkit

👀 Some of my favorite OSINT tools.

🔎 Find usernames and download their data across social media.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

DorkScout - Golang tool to automate google dork scan against the entiere internet or specific targets

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

Lightweight utility to fool port scanners

E4GL30S1NT - Simple Information Gathering Tool

Google dorks to easily get some Discord bots tokens

Automated Web Recon Shell Scripts

Information Security Library

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

A simple program written in bash that contains basic Linux network tools, information gathering tools and scanning tools.

apkizer is a mass downloader for android applications for all available versions.

asnap aims to render recon phase easier by providing updated data about which companies owns which ipv4 or ipv6 addresses and allows the user to automate initial port and service scanning.

Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.

Host Header Injection Scanner

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

REST API backend for Reconmap

Gotanda is browser Web Extension for OSINT.

信息收集 OR 信息搜集

A Security Tool for Enumerating WebSockets

Provides various Windows Server Active Directory (AD) security-focused reports.

Attempts to determine the configuration, behavior, and type of a remote MQTT broker

a commandline #OSINT tool to find the online presence of a username in popular social media websites like Facebook, Instagram, Twitter, etc.

ICP备案查询，可查询企业或域名的ICP备案信息，自动完成滑动验证，保存结果到Excel表格，适用于2022年新版的工信部备案管理系统网站，告别频繁拖动验证，以及某站*工具要开通VIP才可查看备案信息的坑