WhatsMyName: perform user enumeration on various websites
WhatsMyName This repository has the unified data required to perform user and username enumeration on various websites. Content is in a JSON file and can easily be used in other...
Category: Web Information Gathering
megplus: Automated reconnaissance wrapper
megplus Automated reconnaissance wrapper About This wrapper will automate numerous tasks and help you during your reconnaissance process. The script finds common issues, low hanging fruit, and assists you when...
CrawlBox: brute-force web directory
CrawlBox An easy way to brute-force web directory. Install Usage positional arguments: optional arguments: Example web site scan with the internal wordlist python crawlbox.py www.domain.com web site scan with the...
parameth: brute discover GET and POST parameters
parameth This tool can be used to brute discover GET and POST parameters Often when you are busting a directory for common files, you can identify scripts (for example test.php)...
wafid: Wafid identify and fingerprint Web Application Firewall (WAF) products
wafid Wafid identifies and fingerprints Web Application Firewall (WAF) products. Download git clone https://github.com/CSecGroup/wafid.git How does it work? Wafid sends a normal HTTP request and analyses the response; this identifies a...
shocens: Query Shodan and Censys data for fast parsing
Shocens Query Shodan and Censys Features Shodan query with filters Censys query for all supported ipv4 query terms Supports searching multiple queries by newline separated file Output results in CSV,...
davscan: Fingerprints servers, finds exploits, scans WebDAV
DAVScan is a quick and lightweight webdav scanner designed to discover hidden files and folders on DAV enabled webservers. The scanner works by taking advantage of overly privileged/misconfigured WebDAV servers...
gitrob v2.0.0 release: Reconnaissance tool for GitHub organizations
Gitrob is a tool to help find potentially sensitive files pushed to public repositories on Github. Gitrob will clone repositories belonging to a user or organization down to a configurable...
DarkSpiritz v2.0 releases: penetration testing framework for Linux, MacOS, and Windows systems
What is DarkSpiritz? Created by the SecTel Team it was a project of one of the owners to update and clean-up an older pentesting framework he had created to something...
tinfoleak v2.4 released: open-source tool for Twitter intelligence analysis
tinfoleak is an open-source tool within the OSINT (Open Source Intelligence) and SOCMINT (Social Media Intelligence) disciplines, that automates the extraction of information on Twitter and facilitates subsequent analysis for the...
GSIL: GitHub Sensitive Information Leakage
GSIL(GitHub Sensitive Information Leak) Monitor Github sensitive information leaks in near real time and send alert notifications. Installation Python3(Python2 is not tested) $ git clone https://github.com/FeeiCN/gsil.git $ cd gsil/ $...
CloudFlair: Find origin servers of websites behind by CloudFlare
CloudFlair is a tool to find origin servers of websites protected by CloudFlare who are publicly exposed and don’t restrict network access to the CloudFlare IP ranges as they should....
shodan-cli: Simple golang Shodan command line
shodan-cli Simple golang Shodan command line client with default query. Build $ go get gopkg.in/ns3777k/go-shodan.v2/shodan $ go get github.com/logrusorgru/aurora $ go build As usual, you can build executables for multiple...
Host Scanner: Active/passive network scanner and autonomous vulnerability assessment application
Host Scanner The purpose of this project is to implement a network scanner with both active and passive data acquisition components, which can then autonomously identify services using the latest...
slurp: S3 bucket enumerator
slurp Enumerates S3 buckets manually or via certstream Features Written in Go: It’s faster than python No dependency hell and version locks (ie python 3 and requirements.txt, etc) Better concurrency...
