mmhdanCalculate fingerprints of a website for OSINT search
Stars: ✭ 35 (-96.25%)
WDIRGood resources about web security that I have read.
Stars: ✭ 14 (-98.5%)
ciaCitizen Intelligence Agency, open-source intelligence (OSINT) project
Stars: ✭ 79 (-91.54%)
Assessment MindsetSecurity Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
Stars: ✭ 608 (-34.9%)
Search4Search people on the Internet.
Stars: ✭ 151 (-83.83%)
fdnssearchSwiftly search FDNS datasets from Rapid7 Open Data
Stars: ✭ 19 (-97.97%)
PhoneinfogaPhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.
Stars: ✭ 5,927 (+534.58%)
doraFind exposed API keys based on RegEx and get exploitation methods for some of keys that are found
Stars: ✭ 229 (-75.48%)
wappylyzerImplementation of Wappalyzer in Python
Stars: ✭ 42 (-95.5%)
Offensive DockerOffensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.
Stars: ✭ 328 (-64.88%)
BugHunterNo description or website provided.
Stars: ✭ 23 (-97.54%)
toutatisToutatis is a tool that allows you to extract information from instagrams accounts such as e-mails, phone numbers and more
Stars: ✭ 803 (-14.03%)
JWTweakDetects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.
Stars: ✭ 85 (-90.9%)
BurpSQLTruncSannerMessy BurpSuite plugin for SQL Truncation vulnerabilities.
Stars: ✭ 53 (-94.33%)
T1tl3A simple python script which can check HTTP status of branch of URLs/Subdomains and grab URLs/Subdomain title
Stars: ✭ 14 (-98.5%)
request smugglerHttp request smuggling vulnerability scanner
Stars: ✭ 203 (-78.27%)
youtube-metadataA quick way to gather all the metadata about a video, playlist, or channel from the YouTube API.
Stars: ✭ 58 (-93.79%)
urldedupePass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
Stars: ✭ 208 (-77.73%)
OsrframeworkOSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.
Stars: ✭ 534 (-42.83%)
Mesh Networking🌐 LEGO blocks for networking, a Python library to help create and test flexible network topologies across real and simulated physical links.
Stars: ✭ 329 (-64.78%)
HolyTipsA Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
Stars: ✭ 1,210 (+29.55%)
PandorasBoxSecurity tool to quickly audit Public Box files and folders.
Stars: ✭ 56 (-94%)
getcontactFind info about user by phone number using GetContact API
Stars: ✭ 228 (-75.59%)
swiss-bugbounty-programsList of bug bounty and coordinated vulnerability disclosure programs of companies/organisations in Switzerland
Stars: ✭ 25 (-97.32%)
dontgo403Tool to bypass 40X response codes.
Stars: ✭ 457 (-51.07%)
AllaboutbugbountyAll about bug bounty (bypasses, payloads, and etc)
Stars: ✭ 758 (-18.84%)
PayloadsAllA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 31 (-96.68%)
nntrainerNNtrainer is Software Framework for Training Neural Network Models on Devices.
Stars: ✭ 92 (-90.15%)
Top25 ParameterFor basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
Stars: ✭ 388 (-58.46%)
webreconAutomated Web Recon Shell Scripts
Stars: ✭ 48 (-94.86%)
cf-checkCloudFlare Checker written in Go
Stars: ✭ 147 (-84.26%)
UdorkuDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications, and so on.
Stars: ✭ 326 (-65.1%)
ldapconsoleThe ldapconsole script allows you to perform custom LDAP requests to a Windows domain.
Stars: ✭ 25 (-97.32%)
AmpliSpyCheck local or remote list of DNS servers for suitability in DNS Amplification DoS.
Stars: ✭ 39 (-95.82%)
PwnedornotOSINT Tool for Finding Passwords of Compromised Email Addresses
Stars: ✭ 888 (-4.93%)
GospiderGospider - Fast web spider written in Go
Stars: ✭ 785 (-15.95%)
DomainedMulti Tool Subdomain Enumeration
Stars: ✭ 688 (-26.34%)
Learn365This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection
Stars: ✭ 525 (-43.79%)
ReconnoteWeb Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters
Stars: ✭ 322 (-65.52%)
CASECyber-investigation Analysis Standard Expression (CASE) Ontology
Stars: ✭ 46 (-95.07%)
ORtesterOpen Redirect scanner - (out of date)
Stars: ✭ 24 (-97.43%)
sharinganOffensive Security recon tool
Stars: ✭ 88 (-90.58%)
Osint collectionMaintained collection of OSINT related resources. (All Free & Actionable)
Stars: ✭ 809 (-13.38%)
InventusInventus is a spider designed to find subdomains of a specific domain by crawling it and any subdomains it discovers.
Stars: ✭ 80 (-91.43%)
SecurityExplainedSecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.
Stars: ✭ 301 (-67.77%)
gHarvesterProof of concept for a security issue (in my opinion) that I found in accounts.google.com
Stars: ✭ 20 (-97.86%)
Email2phonenumberA OSINT tool to obtain a target's phone number just by having his email address
Stars: ✭ 379 (-59.42%)
occliUnofficial Command Line Interface for OpenCorporates
Stars: ✭ 18 (-98.07%)
VPS-Bug-Bounty-ToolsScript that automates the installation of the main tools used for web application penetration testing and Bug Bounty.
Stars: ✭ 44 (-95.29%)
GitrobReconnaissance tool for GitHub organizations
Stars: ✭ 5,256 (+462.74%)
securitytoolsquality community projects 👨👩👧👦📓🔎
Stars: ✭ 26 (-97.22%)
ksubdomainSubdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second
Stars: ✭ 320 (-65.74%)
GasmaskInformation gathering tool - OSINT
Stars: ✭ 518 (-44.54%)
Bruteforce ListsSome files for bruteforcing certain things.
Stars: ✭ 320 (-65.74%)
hack-pet🐰 Managing command snippets for hackers/bug bounty hunters. with pet.
Stars: ✭ 77 (-91.76%)