1815 Open source projects that are alternatives of or similar to Spiderfoot

Attack Surface Management Platform | Sn1perSecurity LLC

Intelligence and Reconnaissance Package/Bundle installer.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

recon-ng modules for Censys

internet monitoring osint telegram bot for windows

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

OSINT Framework

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

A toolkit for Security Researchers

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

A high performance offensive security tool for reconnaissance and vulnerability scanning

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

Related subdomains finder

OSINT Bookmarks for Firefox / Chrome / Edge / Safari

HostHunter a recon tool for discovering hostnames using OSINT techniques.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Bringing you the best of the worst files on the Internet.

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

🔍 A Complete Osint Tool

A Tool for Domain Flyovers

A tool to hunt for publicly accessible DigitalOcean Spaces

Authors

Selenium powered Python script to automate searching for vulnerable web apps.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Pentest: Subdomains enumeration tool for penetration testers.

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

Extract and aggregate threat intelligence.

bingip2hosts is a Bing.com web scraper that discovers websites by IP address

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

🔐 Docker Container for Penetration Testing & Security

Data leak checker & OSINT Tool

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

An advanced tool for email reconnaissance

CyCAT.org API back-end server including crawlers

OSINT Swiss Army Knife

Sifter aims to be a fully loaded Op Centre for Pentesters

Threat Hunting queries for various attacks

🔎 Find usernames across social networks

A collection of awesome security hardening guides, tools and other resources

Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

OpenCTI Python Client

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

OpenCTI connectors

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Intelligence tool but without API key

Automatically Launch Google Hacking Queries Against A Target Domain

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

Phomber is infomation grathering tool that reverse search phone numbers and get their details, written in python3.

Making Favicon.ico based Recon Great again !