dirble v1.4.2 released: Fast directory scanning and scraping tool
dirble Dirble is a website directory scanning tool for Windows and Linux. It’s designed to be fast to run and easy to use. How it works Directory Detection Dirble detects...
Category: Web Information Gathering
AIL framework v5.3 released: Analysis Information Leak framework
AIL framework AIL framework – Framework for Analysis of Information Leaks AIL is a modular framework to analyze potential information leaks from unstructured data sources like pastes from Pastebin or...
Rock-ON: all in one Recon tool
Rock-ON Rock-On is all in one recon tool that will help your Recon process give a boost. It is mainly aimed to automate the whole process of recon and save...
SiteBroker vv7.0: information gathering and penetration automation
SiteBroker A cross-platform python based utility for information gathering and penetration automation! Feature Cloudflare Bypass. Website Crawler. |____ Google Based Crawling |____ Bing Based Crawling |____ Manually Crawling Reverse IP....
pown-recon v2.176 releases: A powerful target reconnaissance framework
Pown Recon Pown Recon is a target reconnaissance framework powered by graph theory. The benefit of using graph theory instead of flat table representation is that it is easier to...
Arjun v2.2.2 releases: finding hidden GET & POST parameters
Arjun Arjun is a python script for finding hidden GET & POST parameters using regex and bruteforce. Web applications use parameters (or queries) to accept user input, take the following...
StalkPhish v0.9.8-3 releases: The Phishing kits stalker
StalkPhish StalkPhish is a tool created for searching into free OSINT databases for specific phishing kits URL. More, StalkPhish is designed to try finding phishing kits sources. Some scammers can’t or don’t remove...
dirscraper: OSINT scanning tool which discovers and maps directories
Dirscraper Dirscraper is an OSINT scanning tool which assists penetration testers in identifying hidden, or previously unknown, directories on a domain or subdomain. This helps greatly in the recon stage...
chomp scan: streamline the bug bounty/penetration test reconnaissance phase
Chomp Scan Chomp Scan is a scripted pipeline of tools to simplify the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs. Scope Chomp Scan is a...
scanomaly: web application fuzzer scanner
scanomaly Automated web fuzzing for anomalies (use python 3.6+) The goal of this tool is to be a flexible request fuzzer. Generating lists of requests to make via the different...
Osmedeus v4.6.1 releases: Automatic Reconnaisance and Scanning in Penetration Testing
Osmedeus Automatic Reconnaissance and Scanning in Penetration Testing What is Osmedeus? Osmedeus allows you automated run the collection of awesome tools to reconnaissance and vulnerability scanning against the target. Feature...
Jenkins-Pillage: automatically gathering sensitive information from exposed Jenkins servers
Jenkins-Pillage This tool will attempt to pull console output, environment variables, and workspaces associated with Jenkins builds. It works both against unauthenticated and authenticated (with creds) servers. Typically lots of...
dnsmorph v1.2.8 releases: domain name permutation engine
DNSMORPH is a domain name permutation engine, inspired by dnstwist. It is written in Go making for a compact and very fast tool. It robustly handles any domain or subdomain supplied and provides a...
Bashter: Web Crawler, Scanner, and Analyzer Framework
Bashter Web Crawler, Scanner, and Analyzer Framework (Shell-Script based) Bashter is a tool for scanning a Web-based Application. Bashter is very suitable for doing Bug Bounty or Penetration Testing. It...
pockint v1.2 releases: portable OSINT Swiss Army Knife for DFIR/OSINT professionals
POCKINT (a.k.a. Pocket Intelligence) is the OSINT swiss army knife for DFIR/OSINT professionals. Designed to be a lightweight and portable GUI program (to be carried within USBs or investigation VMs),...
