974 Open source projects that are alternatives of or similar to quick-recon.py

A Python3 based single-file subdomain enumerator

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Subdomain Takeover tool written in Go

🔎 Find usernames across social networks

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Port scanning and domain utility.

OSINT tool - gets data from services like shodan, censys etc. in one app

A MongoDB importer and API for Project Sonars DNS datasets

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

Sifter aims to be a fully loaded Op Centre for Pentesters

Burp Suite extension to discover assets from HTTP response.

A Github organization reconnaissance tool.

Nuubi Tools (Information-ghatering|Scanner|Recon.)

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Automatically Launch Google Hacking Queries Against A Target Domain

Python 3.5+ DNS asynchronous brute force utility

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

E-mails, subdomains and names Harvester - OSINT

🔎 Hunt down social media accounts by username across social networks

👀 Some of my favorite OSINT tools.

An automated e-mail OSINT tool

An OSINT tool to find contacts in order to report security vulnerabilities.

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

a recon tool that allows searching on URLs that are exposed via shortener services

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Weaponizing Live CT logs for automated monitoring of assets

An OSINT tool to gather information about the real owner of a phone number

The Offensive Manual Web Application Penetration Testing Framework.

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Enumerate information from NTLM authentication enabled web endpoints 🔎

Tool to automate common OSINT tasks

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

Unique wordlist generator of unique wordlists.

Yar is a tool for plunderin' organizations, users and/or repositories.

Python library and CLI for the Bug Bounty Recon API

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

🔎 Find usernames and download their data across social media.

Pentest: Subdomains enumeration tool for penetration testers.

Yet Another PHP Shell - The most complete PHP reverse shell

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

List of Awesome Asset Discovery Resources

ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

Gosint is a distributed asset information collection and vulnerability scanning platform

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

apkizer is a mass downloader for android applications for all available versions.

OSINT Framework

Dump exposed HTTP .git fast

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Discover Your Attack Surface!

LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.

The official wrapper for spyse.com API, written in Go, aimed to help developers build their integrations with Spyse.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.