805 Open source projects that are alternatives of or similar to osint

Maryam: Open-source Intelligence(OSINT) Framework

Find emails of Github users

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

🔎 Find usernames and download their data across social media.

Enumerate information from NTLM authentication enabled web endpoints 🔎

Hacking resources and cheat sheets. References, tools, scripts, tutorials, and other resources that help offensive and defensive security professionals.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Network footprint scanner platform. Discover domains and run your custom checks periodically.

holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.

Intelligence and Reconnaissance Package/Bundle installer.

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Related subdomains finder

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

OSINT Project

recon-ng modules for Censys

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension

Information gathering & website reconnaissance | https://phishstats.info/

🔎 Find usernames across social networks

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Automated network asset, email, and social media profile discovery and cataloguing.

Making Favicon.ico based Recon Great again !

🔎 Hunt down social media accounts by username across social networks

Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers

List of Awesome Asset Discovery Resources

OSINT username checker. Collect a dossier on a person by username from a huge number of sites.

Simple Python tool to check if there is an Office 365 instance linked to a domain.

Collect email addresses by crawling search engine results.

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

Mass querying whois records

E4GL30S1NT - Simple Information Gathering Tool

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Burp extension to decode NTLM SSP headers and extract domain/host information

Striker is an offensive information and vulnerability scanner.

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Docker container for datasploit framework

Nuubi Tools (Information-ghatering|Scanner|Recon.)

OneForAll是一款功能强大的子域收集工具

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Python 3.5+ DNS asynchronous brute force utility

a recon tool that allows searching on URLs that are exposed via shortener services

Sifter aims to be a fully loaded Op Centre for Pentesters

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

An advanced tool for email reconnaissance

E-mails, subdomains and names Harvester - OSINT

In-depth Attack Surface Mapping and Asset Discovery

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Links for the OSINT Team

Python library and CLI for the Bug Bounty Recon API

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

👀 Some of my favorite OSINT tools.

A tool to hunt for publicly accessible DigitalOcean Spaces

Semi-automatic OSINT framework and package manager

my oscp prep collection

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping