L00king for a tool / link / command? Find it here ... by {THUGS}
| Tool name | Tags | Description | |
|---|---|---|---|
OSINT Framework |
The OSINT Framework is a collection of ways to gather information on specific topics |
|
|
Raccoon |
Offensive Security Tool for Reconnaissance and Information Gathering |
|
|
Hunter.io |
Email enumeration tool |
|
|
Crt.sh |
Certificate enumeration tool |
|
|
Haveibeenpwned |
Useful for breach enumeraton |
|
|
Sublist3r |
Python tool designed to enumerate subdomains of websites using OSINT |
|
|
Searchcode |
Find real life code examples |
|
|
Unfurl |
Unfurl takes a URL and expands ("unfurls") it into a directed graph, extracting every bit of information from the URL and exposing the obscured |
|
|
SigintOS |
SigintOS as the name suggests, SIGINT is an improved Linux distribution for Signal Intelligence. (HackRF, BladeRF, USRP, RTL-SDR) |
|
|
Recon-cheatsheet |
A okay nice cheatsheet for doing recon, found on DEF CON - 9221 twitter now hosted locally for keepsake :) |
|
|
Recon-ct |
CTRECON - Certificate Transparency Reconnaissance |
|
|
Recon-ntoo |
NTOORECON - Number To Operator Reconnaissance |
|
|
Recon |
Small little RCON suite by me! |
|
|
Maltego CE |
Comprehensive tool for graphical link analyses (OSINT) that offers real-time data mining and information gathering, as well as the representation of this information on a node-based graph |
|
|
GHDB |
Google Hacking Database (GHDB) is a compendium of Google hacking search terms that have been found to reveal sensitive data exposed by vulnerable servers and web applications |
|
|
VirusTotal |
Analyze suspicious files and URLs to detect types of malware, automatically share them with the security community |
|
|
TheHarvester |
Tool designed to be used in the early stages of penetration test or red team engagement. Use it for open source intelligence (OSINT) gathering (email/asn/dns/users/poeple/services) |
|
|
Social-analyzer |
API, CLI & Web App for analysing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems) |
|
|
Spiderfoot |
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface. |
|
|
WhatWeb |
Next generation web scanner. WhatWeb recognises web technologies including content management systems (CMS), blogging platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded devices |
|
|
Etherblob-explorer |
Search and extract blob files on the Ethereum Blockchain network |
|
|
Go-ethereum |
Official Go implementation of the Ethereum protocol. Quick way to download block data via geth. |
|
|
ETH-block-by-date |
Get Ethereum block number by a given date. Or blocks by a given period duration. Works well with Web3 node js. |
|
|
Web3.js |
Ethereum JavaScript API. |
|
|
Web3.py |
A python interface for interacting with the Ethereum blockchain and ecosystem. Based on Web3.js |
|
|
Sherlock |
Hunt down social media accounts by username and email across social networks |
|