1753 Open source projects that are alternatives of or similar to Ntlmrecon

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Python library and CLI for the Bug Bounty Recon API

🔎 Hunt down social media accounts by username across social networks

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Making Favicon.ico based Recon Great again !

E-mails, subdomains and names Harvester - OSINT

A high performance offensive security tool for reconnaissance and vulnerability scanning

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

OSINT

Intelligence and Reconnaissance Package/Bundle installer.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

Python tool that monitors and logs user-run commands on a Linux system for either offensive or defensive purposes..

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Collection of PowerShell functions a Red Teamer may use to collect data from a machine

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Monitoring your Slack workspaces for sensitive information

👀 Some of my favorite OSINT tools.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

An advanced tool for email reconnaissance

In-depth Attack Surface Mapping and Asset Discovery

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

🔎 Find usernames across social networks

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Maryam: Open-source Intelligence(OSINT) Framework

Python 3.5+ DNS asynchronous brute force utility

List of Awesome Asset Discovery Resources

ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.

Weaponizing Live CT logs for automated monitoring of assets

Automated network asset, email, and social media profile discovery and cataloguing.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

The Offensive Manual Web Application Penetration Testing Framework.

OSINT Project

A tool to hunt for publicly accessible DigitalOcean Spaces

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

Semi-automatic OSINT framework and package manager

记录自己编写、修改的部分工具

A tool to fastly get all javascript sources/files

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

An OSINT tool to gather information about the real owner of a phone number

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

Monitoring GitLab for sensitive data shared publicly

One way to continuously monitor sensitive information that could be exposed on Github

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

The official wrapper for spyse.com API, written in Go, aimed to help developers build their integrations with Spyse.

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

my oscp prep collection

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Perform automated network reconnaissance scans