1956 Open source projects that are alternatives of or similar to Osmedeus

Gosint is a distributed asset information collection and vulnerability scanning platform

XSHOCK Shellshock Exploit

Multi source CVE/exploit parser.

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

Your Google Recon is Now Automated

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

Boxer: A fast directory bruteforce tool written in Python with concurrency.

Awesome hacking is an awesome collection of hacking tools.

Perform automated network reconnaissance scans

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

web scanner - exploitation - information gathering

Awesome Vulnerable Applications

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

An automated target reconnaissance pipeline.

Advanced and easy to use penetration testing framework 💣🔎

Awesome cloud enumerator

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

A tool to fastly get all javascript sources/files

Official Black Hat Arsenal Security Tools Repository

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

无状态子域名爆破工具

The Swiss Army knife for automated Web Application Testing

🔺 Red Team Hardware Toolkit 🔺

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

OSINT Tool: Generate username lists for companies on LinkedIn

Information gathering tool - OSINT

It's a Docker Environment for pentesting which having all the required tool for VAPT.

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

🔎 Hunt down social media accounts by username across social networks

In-depth Attack Surface Mapping and Asset Discovery

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

E-mails, subdomains and names Harvester - OSINT

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

🔎 Find usernames across social networks

Dark Web OSINT Tool

Discover Your Attack Surface!

Web Recon & Exploitation Tool.

Do some quick reconnaissance on a domain-based web-application

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

People tracker on the Internet: OSINT analysis and research tool by Jose Pino

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

my oscp prep collection

Nmap and NSE command line wrapper in the style of Metasploit

BugBounty Tool

Intelligence and Reconnaissance Package/Bundle installer.

Python library and CLI for the Bug Bounty Recon API

Pentesting/Bugbounty Dockerfiles.