Category: Web Information Gathering
SubFinder SubFinder is a subdomain discovery tool that uses various techniques to discover massive amounts of subdomains for any target. It has been aimed at a successor to the sublist3r project. SubFinder uses Passive Sources,...
CrabStick Crabstick is an HTTP/HTTPS security vulnerability scanner that finds LFI/RFI (local and remote file inclusion) and tries to escalate this to gain a remote reverse shell. Crabstick’s is designed to handle, look and feel like...
repo-security-scanner CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys Run it against your entire repo’s history by piping the output from git log -p Installation Download the latest stable...
admin_panel_sniffer A powerful admin login page finder in python. Should work with both python 2 and 3. Features: Huge dictionary file, which of course can be changed to anything you want. Progress tracking, if...
Tachyon is a Fast Multi-Threaded Web Discovery Tool. The main goal of it is to help webadmins find leftover files in their site installation, permission problems and web server configuration errors. It is not...
GitTools This repository contains three small python/bash scripts used for the Git research. Read about it here Download Finder You can use this tool to find websites with their .git repository available to...
PyLazyS3 A Python port of the original lazys3 tool to enumerate AWS S3 buckets using different permutations, originally created by @NahamSec. It utilizes the asyncio and aiohttp libraries to handle multiple high concurrency requests with great efficiency. Installation git clone https://github.com/Den1al/PyLazyS3.git...
Danger zone Correlate data between domains, ips and email addresses, present it as a graph and store everything into Elasticsearch and JSON files. Cases Based on given email, check for associate domains and then...
ReconDog Recon Dog is an all in one tool for all your basic information gathering needs. It uses APIs to gather all the information so your identity is not exposed. Main Features Wizard +...
Github-Hunter This tool is for sensitive information searching on Github. Installation Requirements Python 3.x 1.git clone https://github.com/Hell0W0rld0/Github-Hunter.git 2.cd Github-Hunter 3.pip install virtualenv 4.virtualenv –python=/usr/local/bin/python3 env 5.source venv/bin/activate 6.pip install -r requirements Settings Before using...
detectem is a specialized software detector. detectem is an open-source project written in Python and powered by Splash, an open-source project developed by Scrapinghub to render web pages with a lot of great features, including Javascript support and a convenient API. detectem uses Splash to render...
BLUTO DNS Recon | Brute Forcer | DNS Zone Transfer | DNS Wild Card Checks | DNS Wild Card Brute Forcer | Email Enumeration | Staff Enumeration | Compromised Account Enumeration | Metadata Harvesting...
Raccoon Raccoon is a tool made for reconnaissance and information gathering with an emphasis on simplicity. It will do everything from fetching DNS records, retrieving WHOIS information, obtaining TLS data, detecting WAF presence and...
raven Raven is a Linkedin information gathering tool that can be used by pentesters to gather information about organization employees using Linkedin. Please do not use this program to do stupid things. The author...
gOSINT OSINT framework in Go you probably want to take a look at the develop branch for more updates. Introduction gOSINT is a small OSINT framework in Golang, if you want, feel free to...