TorBoT v4.0 releases: Deep and Dark Web OSINT Tool
TorBoT – OSINT tool for Deep and Dark Web. The basic procedure executed by the web crawling algorithm takes a list of seed URLs as its input and repeatedly executes...
Category: Web Information Gathering
whoUR v1.6 releases: information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner
WhoUr is a simple tool in python for getting info of a website and scan sqli vuln with google. this is fast but is not powerful, actually is under construction,...
domainhunter: Checks expired domains, bluecoat categorization, and Archive.org history
Domain Hunter Domain name selection is an important aspect of preparation for penetration tests and especially Red Team engagements. Commonly, domains that were used previously for benign purposes and were...
webanalyze: Port of Wappalyzer in Go to automate scanning
webanalyze This is a port of Wappalyzer (uncovers technologies used on websites) in go to automate scanning. This tool is designed to be performant and allows to test huge lists of hosts....
spidr: versatile Ruby web spidering library
Spidr Spidr is a versatile Ruby web spidering library that can spider a site, multiple domains, certain links or infinitely. Spidr is designed to be fast and easy to use....
ID-entify: search for information in the passive way related to a domain
ID-entify is a tool that allows you to search for information in the passive way related to a domain. SEARCH FOR INFORMATION RELATED TO A DOMAIN: Emails IP addresses Domains...
goGetBucket: AWS S3 Bucket discovery through alterations and permutations
goGetBucket – AWS S3 Bucket discovery through alterations and permutation When performing a recon on a domain – understanding assets they own is very important. AWS S3 bucket permissions have...
Yeti: Your everyday threat intelligence
Yeti is a platform meant to organize observables, indicators of compromise, TTPs, and knowledge on threats in a single, unified repository. Yeti will also automatically enrich observables (e.g. resolve domains,...
PortWitness: find out active domain and subdomains of websites
PortWitness is a bash tool designed to find out active domain and subdomains of websites using port scanning. It helps penetration testers and bug hunters collect and gather information about...
netpwn: automate tasks of pentesting
netpwn A framework made to automate tasks of pentesting. Written in python 2.7 Features AutoComplete – Type a few letters of the command you want and hit tab to for...
OpenDoor v4.1 releases: OWASP WEB Directory Scanner
OpenDoor OWASP is a console multifunctional websites scanner. This application finds all possible ways to login, index of/ directories, web shells, restricted access points, subdomains, hidden data, and large backups....
LinkFinder: finds endpoints in JavaScript files
LinkFinder LinkFinder is a python script written to discover endpoints and their parameters in JavaScript files. This way penetration testers and bug hunters are able to gather new, hidden endpoints...
s3-buckets-finder: Find aws s3 buckets and extract datas
s3-buckets-bruteforcer PHP tool to brute force Amazon S3 bucket Note that this is an automated tool, a manual check is still required. Installation Requirement: apt-get install awscli aws configure Clone...
003Recon: Some tools to automate recon
003Recon: Some tools to automate recon This repository contains some of my scripts that I created to automate some recon processes. It performs the following things; Get subdomains of a...
massdns: subdomain enumeration tool
MassDNS 0.3 A high-performance DNS stub resolver MassDNS is a simple high-performance DNS stub resolver targetting those who seek to resolve a massive amount of domain names in the order...
