1028 Open source projects that are alternatives of or similar to Spaces Finder

One way to continuously monitor sensitive information that could be exposed on Github

Simple Keylogger with smtp to send emails on your account using python works on linux and Windows

Awesome cloud enumerator

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Next generation web scanner

An automated target reconnaissance pipeline.

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

swiss army knife for hackers

Network footprint scanner platform. Discover domains and run your custom checks periodically.

A permutation generation tool written in golang

LinkedinScraper is an another information gathering tool written in python. You can scrape employees of companies on Linkedin.com and then create these employee names, titles and emails.

Find emails of Github users

Automation for internal Windows Penetrationtest / AD-Security

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Idiomatic nmap library for go developers

OSINT Swiss Army Knife

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

OneForAll是一款功能强大的子域收集工具

Extract endpoints from APK files

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

A Tool for Domain Flyovers

The Offensive Manual Web Application Penetration Testing Framework.

Automatically Launch Google Hacking Queries Against A Target Domain

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Fast web fuzzer written in Go

bingip2hosts is a Bing.com web scraper that discovers websites by IP address

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc

Dradis Framework: Colllaboration and reporting for IT Security teams

OSINT tool - gets data from services like shodan, censys etc. in one app

Information gathering tool - OSINT

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

🔎 Hunt down social media accounts by username across social networks

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

OSINT Tool: Generate username lists for companies on LinkedIn

In-depth Attack Surface Mapping and Asset Discovery

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Gorsair hacks its way into remote docker containers that expose their APIs

Web path scanner

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

被动式漏洞扫描系统

Maintained collection of OSINT related resources. (All Free & Actionable)

Simple multi threaded tool to extract domain related data from commoncrawl.org

The Last Web Recon Tool You'll Need

a recon tool that allows searching on URLs that are exposed via shortener services

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Discover Your Attack Surface!