PulsarNetwork footprint scanner platform. Discover domains and run your custom checks periodically.
Stars: ✭ 314 (-66.38%)
aquatoneA Tool for Domain Flyovers
Stars: ✭ 43 (-95.4%)
osmedeus-workflowCommunity Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
Stars: ✭ 26 (-97.22%)
Sub-DrillA very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
Stars: ✭ 70 (-92.51%)
targetsA collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.
Stars: ✭ 85 (-90.9%)
ResourcesNo description or website provided.
Stars: ✭ 38 (-95.93%)
ParamspiderMining parameters from dark corners of Web Archives
Stars: ✭ 781 (-16.38%)
DekstereconWeb Application recon automation
Stars: ✭ 109 (-88.33%)
UddupUrls de-duplication tool for better recon.
Stars: ✭ 103 (-88.97%)
ArlARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Stars: ✭ 1,357 (+45.29%)
MetabigorIntelligence tool but without API key
Stars: ✭ 424 (-54.6%)
XrcrossXRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities
Stars: ✭ 175 (-81.26%)
ICUAn Extended, Modulair, Host Discovery Framework
Stars: ✭ 40 (-95.72%)
Censys Subdomain Finder⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
Stars: ✭ 402 (-56.96%)
BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (-5.03%)
AutoreconSimple shell script for automated domain recognition with some tools
Stars: ✭ 244 (-73.88%)
Oscp Prepmy oscp prep collection
Stars: ✭ 105 (-88.76%)
GitgrabergitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
Stars: ✭ 1,164 (+24.63%)
BusterAn advanced tool for email reconnaissance
Stars: ✭ 387 (-58.57%)
Awesome BbhtA bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Stars: ✭ 190 (-79.66%)
OpenctiAuthors
Stars: ✭ 2,165 (+131.8%)
H8mailEmail OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Stars: ✭ 2,163 (+131.58%)
AsnipASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
Stars: ✭ 126 (-86.51%)
MaryamMaryam: Open-source Intelligence(OSINT) Framework
Stars: ✭ 371 (-60.28%)
TheharvesterE-mails, subdomains and names Harvester - OSINT
Stars: ✭ 6,175 (+561.13%)
WhoEnumMass querying whois records
Stars: ✭ 24 (-97.43%)
Recon My WayThis repository created for personal use and added tools from my latest blog post.
Stars: ✭ 271 (-70.99%)
Cc.pyExtracting URLs of a specific target based on the results of "commoncrawl.org"
Stars: ✭ 250 (-73.23%)
MegplusAutomated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
Stars: ✭ 268 (-71.31%)
Recon PipelineAn automated target reconnaissance pipeline.
Stars: ✭ 278 (-70.24%)
osintDocker image for osint
Stars: ✭ 92 (-90.15%)
ZenFind emails of Github users
Stars: ✭ 343 (-63.28%)
gosintGosint is a distributed asset information collection and vulnerability scanning platform
Stars: ✭ 344 (-63.17%)
SourceWolfAmazingly fast response crawler to find juicy stuff in the source code! 😎🔥
Stars: ✭ 132 (-85.87%)
Contact.shAn OSINT tool to find contacts in order to report security vulnerabilities.
Stars: ✭ 216 (-76.87%)
KaliIntelligenceSuiteKali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.
Stars: ✭ 58 (-93.79%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+263.06%)
PdlistA passive subdomain finder
Stars: ✭ 204 (-78.16%)
OffensiveCloudDistributionLeverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.
Stars: ✭ 86 (-90.79%)
PriestExtract server and IP address information from Browser SSRF
Stars: ✭ 13 (-98.61%)
LazyreconAn automated approach to performing recon for bug bounty hunting and penetration testing.
Stars: ✭ 282 (-69.81%)
SonarsearchA MongoDB importer and API for Project Sonars DNS datasets
Stars: ✭ 297 (-68.2%)
MitakaA browser extension for OSINT search
Stars: ✭ 483 (-48.29%)
Security whitepapersCollection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi
Stars: ✭ 644 (-31.05%)
InstagramosintAn Instagram Open Source Intelligence Tool
Stars: ✭ 484 (-48.18%)
Awesome Osint😱 A curated list of amazingly awesome OSINT
Stars: ✭ 7,830 (+738.33%)
WhatbreachOSINT tool to find breached emails, databases, pastes, and relevant information
Stars: ✭ 472 (-49.46%)
NullinuxInternal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.
Stars: ✭ 451 (-51.71%)
Shotlootera recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc
Stars: ✭ 451 (-51.71%)
TrapePeople tracker on the Internet: OSINT analysis and research tool by Jose Pino
Stars: ✭ 6,753 (+623.02%)
IntelmqIntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
Stars: ✭ 611 (-34.58%)
ThreatingestorExtract and aggregate threat intelligence.
Stars: ✭ 439 (-53%)
WitnessmeWeb Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.
Stars: ✭ 436 (-53.32%)
Pagodopagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching
Stars: ✭ 603 (-35.44%)
GoohakAutomatically Launch Google Hacking Queries Against A Target Domain
Stars: ✭ 432 (-53.75%)
VhostscanA virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Stars: ✭ 767 (-17.88%)