1815 Open source projects that are alternatives of or similar to Spiderfoot

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Nuclei templates for K8S security scanning

An automated e-mail OSINT tool

A Github organization reconnaissance tool.

holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.

Python library and CLI for the Bug Bounty Recon API

Burp Extender plugin that generates a sitemap of a website using Wayback Machine

Maryam: Open-source Intelligence(OSINT) Framework

Best practices in threat intelligence

Threat research and reporting from IronNet's Threat Research Teams

Offensive Reverse Shell (Cheat Sheet)

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

Python bindings for Yeti's API

⚔️MITRE ATT&CK Machinations in R

Ayashige provides a list of suspicious newly updated domains as a JSON feed

A collection of some of my scripts

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

A helper to run OSINT queries & manage results continuously

A very loud but fast recon scan and pentest template creator for use in CTF's/OSCP/Hackthebox...

LinkedinScraper is an another information gathering tool written in python. You can scrape employees of companies on Linkedin.com and then create these employee names, titles and emails.

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Social media hunter

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

This repository is used to store answers when resolving ctf challanges, how i came to that answer and the line of thought used to reach it.

Open Redirect Payloads

Standard-Format Threat Intelligence Feeds

Leaked pentesting manuals given to Conti ransomware crooks

Dorothy is a tool to test security monitoring and detection for Okta environments

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

Backend logic implementation for Vulnerability Management System

Hashes of infamous malware

CLI program that collects information from facebook user profiles via Selenium.

Misc. Public Reports of Penetration Testing and Security Audits.

Simple Keylogger with smtp to send emails on your account using python works on linux and Windows

A web front-end for password cracking and analytics

🔨 Manage your website via terminal

Collection of best practices to add OSINT into MISP and/or MISP communities

Penetration Testing notes, resources and scripts

Spin up new Windows qubes quickly, effortlessly and securely on Qubes OS

Python 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/

Repository of my CTF writeups

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

Goca Scanner

A tool for generating reverse shell payloads on the fly.

ThePhish: an automated phishing email analysis tool

🦄🔒 Awesome list of secrets in environment variables 🖥️

An extendable tool to extract and aggregate IoCs from threat feeds

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

Yet Another PHP Shell - The most complete PHP reverse shell

Web Recon & Exploitation Tool.

Interactive Threat Intelligence Bot that leverages serverless framework, AWS/GCP, and Slack

WebMap-Nmap Web Dashboard and Reporting

You didn't think I'd go and leave the blue team out, right?

📝 urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server

👻Impost3r -- A linux password thief

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

A quick way to gather all the metadata about a video, playlist, or channel from the YouTube API.

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.