Category: Web Information Gathering
EyeWitness is designed to take screenshots of websites provide some server header info, and identify default credentials if known. EyeWitness is designed to run on Kali Linux. It will auto-detect the file you give...
Filebuster An extremely fast and flexible web fuzzer What is it? Filebuster is an HTTP fuzzer / content discovery script with loads of features and built to be easy to use and fast! It...
OSINT-SPY Search using OSINT(Open Source Intelligence) Performs OSINT scan on email/domain/ip_address/organization using OSINT-SPY. It can be used by Data Miners, Infosec Researchers, Penetration Testers and cybercrime investigator in order to find deep information about...
Pyfiscan is free web-application vulnerability and version scanner and can be used to locate out-dated versions of common web-applications in Linux-servers. Example use case is hosting-providers keeping eye on their users’ installations to keep...
Intel-One Conceived and developed a passive reconnaissance command line tool able to gather information from a variety of sources to link a target domain, company or individual to publicly available information. Reduced manual user...
gasmask All in one Information gathering tool – OSINT Written by: maldevel (twitter) Information Gathering ask bing crt dns dogpile github google googleplus instagram linkedin netcraft pgp reddit reverse dns twitter vhosts virustotal whois yahoo yandex...
CMSScan Scan WordPress, Drupal, Joomla, vBulletin websites for Security issues. CMSScan provides a centralized Security Dashboard for CMS Security scans. It is powered by wpscan, droopescan, vbscan and joomscan. It supports both on-demand and...
InDigger InDigger is a web scraping tool for LinkedIn. Given a company name, it goes through a predefined list of departments and returns the employees, their job title, their work experience, and their education....
TIDoS Framework TIDoS Framework is a comprehensive web application audit framework with some serious perks. Highlights:- The main highlights of this framework are: Basic first release (but huge). Has 4 main phases, subdivided into 13...
Djangohunter A tool designed to help identify incorrectly configured Django applications that are exposing sensitive information. Download git clone https://github.com/6IX7ine/djangohunter.git cd djangohunter pip -r install requirements Usage python3 djangohunter.py –key {shodan} Dorks: ‘DisallowedHost’, ‘KeyError’, ‘OperationalError’, ‘Page...
Gitem is a tool for performing Github organizational reconnaissance. This could include information for: OSINT Spearphishing Recruitment Competitive analysis OPSEC self-assessment Changelog v0.9.2 Fixed Python package version classifiers Installing $ pip install gitem $ gitem...
Github Dorks Github search is quite powerful and useful feature and can be used to search sensitive data on the repositories. Collection of github dorks that can reveal sensitive personal and/or organizational information such as...
Dirhunt is a web crawler optimize for search and analyze directories. This tool can find interesting things if the server has the “index of” mode enabled. Dirhunt is also useful if the directory listing is not enabled....
JCS (Joomla Component Scanner) made for penetration testing purpose on Joomla CMS. JCS can help you with the latest component vulnerabilities and exploits. The database can update from several resources and a Crawler has...
DOGE Darknet Osint Graph Explorer Still in dev, works right. You should use this in addition to Darknet OSINT Transform Download git clone https://github.com/pielco11/DOGE.git Pay attention here Query prototype: SELECT DISTINCT custom_column_name AS input, another_custom_name AS...