1021 Open source projects that are alternatives of or similar to Witnessme

A Tool for Domain Flyovers

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Intelligence and Reconnaissance Package/Bundle installer.

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

An OSINT tool to gather information about the real owner of a phone number

A tool to hunt for publicly accessible DigitalOcean Spaces

The Offensive Manual Web Application Penetration Testing Framework.

Yar is a tool for plunderin' organizations, users and/or repositories.

A Github organization reconnaissance tool.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Data leak checker & OSINT Tool

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

Burp Extender plugin that generates a sitemap of a website using Wayback Machine

ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

The official wrapper for spyse.com API, written in Go, aimed to help developers build their integrations with Spyse.

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

An OSINT Metadata analyzing tool that filters through tags and creates reports

List of Awesome Asset Discovery Resources

Weaponizing Live CT logs for automated monitoring of assets

Discover Your Attack Surface!

OSINT tool - gets data from services like shodan, censys etc. in one app

Hunt down the secrets from the WebArchives for Fun and Profit

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

Maryam: Open-source Intelligence(OSINT) Framework

A high performance offensive security tool for reconnaissance and vulnerability scanning

👀 Some of my favorite OSINT tools.

Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Python 3.5+ DNS asynchronous brute force utility

OSINT Framework

A passive subdomain finder

Related subdomains finder

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

🔎 Find usernames and download their data across social media.

A Tool for Domain Flyovers

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

bingip2hosts is a Bing.com web scraper that discovers websites by IP address

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Do some quick reconnaissance on a domain-based web-application

Capture website thumbnails using the urlbox.io screenshot as a service API in node

This repository created for personal use and added tools from my latest blog post.

Semi-automatic OSINT framework and package manager

Dark Web OSINT Tool

Enumerate information from NTLM authentication enabled web endpoints 🔎

🔎 Find usernames across social networks