1296 Open source projects that are alternatives of or similar to Sn0int

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Related subdomains finder

A tool to hunt for publicly accessible DigitalOcean Spaces

A high performance offensive security tool for reconnaissance and vulnerability scanning

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Intelligence and Reconnaissance Package/Bundle installer.

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

👀 Some of my favorite OSINT tools.

Pentest: Subdomains enumeration tool for penetration testers.

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Maryam: Open-source Intelligence(OSINT) Framework

A tool to fastly get all javascript sources/files

Python 3.5+ DNS asynchronous brute force utility

Security tool to trace URL's jumps across the rel links to obtain the last URL

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

List of Awesome Asset Discovery Resources

Sifter aims to be a fully loaded Op Centre for Pentesters

Automated network asset, email, and social media profile discovery and cataloguing.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

OSINT Project

Enumerate information from NTLM authentication enabled web endpoints 🔎

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Making Favicon.ico based Recon Great again !

E-mails, subdomains and names Harvester - OSINT

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

A Tool for Domain Flyovers

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

a recon tool that allows searching on URLs that are exposed via shortener services

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Discover Your Attack Surface!

my oscp prep collection

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

Do some quick reconnaissance on a domain-based web-application

OSINT

🆕 The Multi-Tool Web Vulnerability Scanner.

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

InQL - A Burp Extension for GraphQL Security Testing

Web Content Discovery Tool

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

🔎 shodansploit > v1.3.0

Secure, Unified, Powerful and Extensible Rust Android Analyzer

swiss army knife for hackers

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

network reconnaissance toolkit

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Find emails of Github users

Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Links for the OSINT Team