Dirhunt is a web crawler optimize for search and analyze directories. This tool can find interesting things if the server has the “index of” mode enabled. Dirhunt is also useful if the directory...
JCS (Joomla Component Scanner) made for penetration testing purpose on Joomla CMS. JCS can help you with the latest component vulnerabilities and exploits. The database can update from several resources...
DOGE Darknet Osint Graph Explorer Still in dev, works right. You should use this in addition to Darknet OSINT Transform Download git clone https://github.com/pielco11/DOGE.git Pay attention here Query prototype: SELECT DISTINCT custom_column_name...
SubFinder SubFinder is a subdomain discovery tool that uses various techniques to discover massive amounts of subdomains for any target. It has been aimed at a successor to the sublist3r project....
Web Information Gathering / Web Vulnerability Analysis / WebApp PenTest
by do son · Published October 28, 2018
CrabStick Crabstick is an HTTP/HTTPS security vulnerability scanner that finds LFI/RFI (local and remote file inclusion) and tries to escalate this to gain a remote reverse shell. Crabstick’s is designed to handle,...
repo-security-scanner CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys Run it against your entire repo’s history by piping the output from git log -p...
admin_panel_sniffer A powerful admin login page finder in python. Should work with both python 2 and 3. Features: Huge dictionary file, which of course can be changed to anything you...
Tachyon is a Fast Multi-Threaded Web Discovery Tool. The main goal of it is to help webadmins find leftover files in their site installation, permission problems and web server configuration...
Web Information Gathering / WebApp PenTest
by do son · Published October 22, 2018 · Last modified November 20, 2022
GitTools This repository contains three small python/bash scripts used for the Git research. Read about it here Download Finder You can use this tool to find websites with their...
PyLazyS3 A Python port of the original lazys3 tool to enumerate AWS S3 buckets using different permutations, originally created by @NahamSec. It utilizes the asyncio and aiohttp libraries to handle multiple high concurrency requests with great...
Danger zone Correlate data between domains, ips and email addresses, present it as a graph and store everything into Elasticsearch and JSON files. Cases Based on given email, check for...
ReconDog Recon Dog is an all in one tool for all your basic information gathering needs. It uses APIs to gather all the information so your identity is not exposed....
Github-Hunter This tool is for sensitive information searching on Github. Installation Requirements Python 3.x 1.git clone https://github.com/Hell0W0rld0/Github-Hunter.git 2.cd Github-Hunter 3.pip install virtualenv 4.virtualenv –python=/usr/local/bin/python3 env 5.source venv/bin/activate 6.pip install -r...
Web Information Gathering / WebApp PenTest
by do son · Published October 5, 2018 · Last modified July 2, 2020
detectem is a specialized software detector. detectem is an open-source project written in Python and powered by Splash, an open-source project developed by Scrapinghub to render web pages with a lot of great features, including Javascript support and...
BLUTO DNS Recon | Brute Forcer | DNS Zone Transfer | DNS Wild Card Checks | DNS Wild Card Brute Forcer | Email Enumeration | Staff Enumeration | Compromised Account...
Support Securityonline.info site. Thanks!
