L00king for a tool / link / command? Find it here ... by {THUGS}
| Tool name | Tags | Description | |
|---|---|---|---|
OSINT Framework |
The OSINT Framework is a collection of ways to gather information on specific topics |
|
|
Raccoon |
Offensive Security Tool for Reconnaissance and Information Gathering |
|
|
Netdiscover |
Great tool to discover assets on your network active/passive ARP reconnaissance tool |
|
|
Hunter.io |
Email enumeration tool |
|
|
Crt.sh |
Certificate enumeration tool |
|
|
Haveibeenpwned |
Useful for breach enumeraton |
|
|
Sublist3r |
Python tool designed to enumerate subdomains of websites using OSINT |
|
|
Gobuster |
tool used to brute-force URIs, DNS, Virtual Host, Open Amazon S3 buckets |
|
|
Gobuster dir+session |
gobuster dir -u http://<ip_host> -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -x php -c PHPSESSID=<session_value> |
|
|
Reconnoitre |
A reconnaissance tool made for the OSCP labs to automate information gathering and service enumeration whilst creating a directory structure to store results, findings and exploits used for each host |
|
|
Searchcode |
Find real life code examples |
|
|
Unfurl |
Unfurl takes a URL and expands ("unfurls") it into a directed graph, extracting every bit of information from the URL and exposing the obscured |
|
|
Gqrx SDR |
Gqrx is an open source software defined radio receiver (SDR) Airspy, Funcube Dongles, rtl-sdr, HackRF and USRP devices |
|
|
SigintOS |
SigintOS as the name suggests, SIGINT is an improved Linux distribution for Signal Intelligence. (HackRF, BladeRF, USRP, RTL-SDR) |
|
|
URH |
Universal Radio Hacker (URH) is a complete suite for wireless protocol investigation with native support for many common Software Defined Radios |
|
|
CMSmap |
Python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs |
|
|
Recon-cheatsheet |
A okay nice cheatsheet for doing recon, found on DEF CON - 9221 twitter now hosted locally for keepsake :) |
|
|
Recon-ct |
CTRECON - Certificate Transparency Reconnaissance |
|
|
Recon-ntoo |
NTOORECON - Number To Operator Reconnaissance |
|
|
Recon |
Small little RCON suite by me! |
|
|
Autopsy |
Autopsy is the premier end-to-end open source digital forensics platform |
|
|
LinEnum |
Best scripted local Linux enumeration & privilege escalation checks |
|
|
Lynis |
Security tool for systems running Linux, macOS, or Unix-based system. Performs an extensive health scan of your systems to support system hardening and compliance testing |
|
|
Skipfish |
Web application security scanner created by lcamtuf for google |
|
|
Maltego CE |
Comprehensive tool for graphical link analyses (OSINT) that offers real-time data mining and information gathering, as well as the representation of this information on a node-based graph |
|
|
GHDB |
Google Hacking Database (GHDB) is a compendium of Google hacking search terms that have been found to reveal sensitive data exposed by vulnerable servers and web applications |
|
|
Sniffit |
SniffIt is a Distribted Sniffer System, which allows users to capture network traffic from an unique machine using a graphical client application |
|
|
Kismet |
Kismet is a wireless network and device detector, sniffer, wardriving tool, and WIDS (wireless intrusion detection) framework |
|
|
Nessus Essentials |
Vulnerability assessment solution for security practitioners. Scan, detect, report, fix exploits, EOL, Risks etc. Utilizing over 65000 CVEs in it's scans. Free version allow 16 ip's to be scanned as much as you want every 90 days. |
|
|
Shodan |
Search Engine for the Internet of Everything. Very cool way to find services or hosts/devices of interest |
|
|
SDRSharp |
SDR software for Airspy and RTL-SDR dongles and HackRF/AirSpy/USRP! The best Windows SDR software out there |
|
|
DKScan |
Danish frequencies for all known services and bands. This might be outdated and also TXT document. You can refer to their site, this is just a backup. www.dkscan.dk |
|
|
TheHarvester |
Tool designed to be used in the early stages of penetration test or red team engagement. Use it for open source intelligence (OSINT) gathering (email/asn/dns/users/poeple/services) |
|
|
Social-analyzer |
API, CLI & Web App for analysing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems) |
|
|
Dirsearch |
Web path scanner |
|
|
Spiderfoot |
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface. |
|
|
WhatWeb |
Next generation web scanner. WhatWeb recognises web technologies including content management systems (CMS), blogging platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded devices |
|
|
ReNgine |
reNgine is an automated reconnaissance framework for web applications it makes is easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless. |
|
|
Sherlock |
Hunt down social media accounts by username and email across social networks |
|