2070 Open source projects that are alternatives of or similar to Sitedorks

a tiny&smart AI & Repo for work for AI Survey百度云资源持续更新中，欢迎点赞star Min's blog 欢迎访问我的博客主页！(Welcome to my blog website !)https://liweimin1996.github.io/

Google image search extension for Windows Explorer.

Simultaneously execute various subdomain enumeration tools and aggregate results.

Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

bingip2hosts is a Bing.com web scraper that discovers websites by IP address

Do some quick reconnaissance on a domain-based web-application

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

A tool to hunt for publicly accessible DigitalOcean Spaces

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Browser extension for viewing archived and cached versions of web pages

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.

🔨 List all IP ranges from: Google (Cloud & GoogleBot), Bing (Bingbot), Amazon (AWS), Microsoft (Azure), Oracle (Cloud) and DigitalOcean with daily updates.

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

Burp extension to decode NTLM SSP headers and extract domain/host information

🔱 [ Phishing Made Easy ] 🔱 (In Beta)

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

🔍 A helpful checklist/collection of Search Engine Optimization (SEO) tips and techniques.

Automated NoSQL database enumeration and web application exploitation tool.

A Python Tool For google Hacking

swiss army knife for hackers

科学上网，ss, ssr, v2ray, trojan, clash, clashr，翻墙机场推荐

A permutation generation tool written in golang

Instant translation application for windows in .NET 🎪

WPrecon (WordPress Recon), is a vulnerability recognition tool in CMS Wordpress, developed in Go and with scripts in Lua.

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

An advanced tool for email reconnaissance

Open Source research tool to search, browse, analyze and explore large document collections by Semantic Search Engine and Open Source Text Mining & Text Analytics platform (Integrates ETL for document processing, OCR for images & PDF, named entity recognition for persons, organizations & locations, metadata management by thesaurus & ontologies, search user interface & search apps for fulltext search, faceted search & knowledge graph)

Awesome Vulnerable Applications

A OSINT tool to obtain a target's phone number just by having his email address

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

OSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.

Offensive tools as Dockerfiles. Lightweight & Ready to go

A passive subdomain finder

Powerfull XSS Scanning and Parameter analysis tool&gem

🔍 Google from the terminal

A collection of awesome one-liner scripts especially for bug bounty tips.

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

🎯 SQL Injection Payload List

Repositório com conteúdo sobre web hacking em português

Email recon made fast and easy, with a framework to build on

People tracker on the Internet: OSINT analysis and research tool by Jose Pino

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

👀 Some of my favorite OSINT tools.

An unofficial DuckDuckGo search API.

🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)

Dark Web OSINT Tool

🔺 Red Team Hardware Toolkit 🔺

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

Change monitoring app that checks the content of web pages in different periods.

goverview - Get an overview of the list of URLs

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

The Swiss Army knife for automated Web Application Testing

bash scripting thing !

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.