483 Open source projects that are alternatives of or similar to XposedOrNot

Making Favicon.ico based Recon Great again !

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Related subdomains finder

Semi-automatic OSINT framework and package manager

E-mails, subdomains and names Harvester - OSINT

A tool to hunt for publicly accessible DigitalOcean Spaces

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

OSINT Framework

Maryam: Open-source Intelligence(OSINT) Framework

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Automated network asset, email, and social media profile discovery and cataloguing.

List of Awesome Asset Discovery Resources

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

👀 Some of my favorite OSINT tools.

Intelligence and Reconnaissance Package/Bundle installer.

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

Automated Web Recon Shell Scripts

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Enumerate information from NTLM authentication enabled web endpoints 🔎

Sifter aims to be a fully loaded Op Centre for Pentesters

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

A Tool for Domain Flyovers

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

An advanced tool for email reconnaissance

Information gathering tool - OSINT

🔎 Hunt down social media accounts by username across social networks

In-depth Attack Surface Mapping and Asset Discovery

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

a recon tool that allows searching on URLs that are exposed via shortener services

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

An OSINT tool to gather information about the real owner of a phone number

Weaponizing Live CT logs for automated monitoring of assets

Links for the OSINT Team

Docker image for osint

Discover Your Attack Surface!

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

The Offensive Manual Web Application Penetration Testing Framework.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

🔎 Find usernames and download their data across social media.

Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

A high performance offensive security tool for reconnaissance and vulnerability scanning

Yar is a tool for plunderin' organizations, users and/or repositories.

OSINT tool - gets data from services like shodan, censys etc. in one app

Python library and CLI for the Bug Bounty Recon API

A Github organization reconnaissance tool.

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

Shodan.io Command Line Interface

Simple Python tool to check if there is an Office 365 instance linked to a domain.

OSINT Project

Pentest: Subdomains enumeration tool for penetration testers.