Trending repositories for topic reconnaissance
Hunt down social media accounts by username across social networks
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book and OSINT tips
SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty
CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.
🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty
🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book and OSINT tips
Community curated list of search queries for various products across multiple search engines.
A (partial) Python rewriting of PowerSploit's PowerView
Generate tens of thousands of subdomain combinations in a matter of seconds
Uscrapper Vanta: Dive deeper into the web with this powerful open-source tool. Extract valuable insights with ease and efficiency, from both surface and deep web sources. Empower your data mining and ...
Bug Bounty Tools used on Twitch - Recon
Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬
This Python application is an OSINT (Open Source Intelligence) tool called "Ominis OSINT - Web Hunter." It performs online information gathering by querying Google for search results related to a user...
MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.
Community curated list of public bug bounty and responsible disclosure programs.
Track the GPS location of the user's smartphone or PC and capture a picture of the target, along with IP and device information.
Hunt down social media accounts by username across social networks
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty
Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬
OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book and OSINT tips
Quickly discover exposed hosts on the internet using multiple search engines.
CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
Coeus 🌐 is an OSINT ToolBox empowering users with tools for effective intelligence gathering from open sources. From social media monitoring 📱 to data analysis 📊, it offers a centralized platform f...
🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
A Content Discovery and Development Platform. Empowering Cybersecurity, AI, Marketing, and Finance professionals and researchers to discover, analyze, and interact with the web in all its dimensions.
SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty
Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬
Community curated list of search queries for various products across multiple search engines.
OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book and OSINT tips
A compiled list of tools for reconnaissance and footprinting
A (partial) Python rewriting of PowerSploit's PowerView
CHOMTE.SH is a powerful shell script designed to automate reconnaissance tasks during penetration testing. It utilizes various Go-based tools to gather information and identify the attack surface, mak...
Uscrapper Vanta: Dive deeper into the web with this powerful open-source tool. Extract valuable insights with ease and efficiency, from both surface and deep web sources. Empower your data mining and ...
CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.
Hunt down social media accounts by username across social networks
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book and OSINT tips
CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.
OSINT web scraper for SatNow to extract details about satellite components and subsystem specs for in-depth reconnaissance 🛸
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
OSINT web scraper for SatNow to extract details about satellite components and subsystem specs for in-depth reconnaissance 🛸
🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeger.gay provider.
Coeus 🌐 is an OSINT ToolBox empowering users with tools for effective intelligence gathering from open sources. From social media monitoring 📱 to data analysis 📊, it offers a centralized platform f...
Robofinder retrieves historical #robots.txt files from #Archive.org, allowing you to uncover previously disallowed directories and paths for any domain—essential for deepening your #OSINT and #recon p...
Provides public bug bounty programs in-scope data that offer rewards and monitors public bug bounty programs assets.
A compiled list of tools for reconnaissance and footprinting
Hunter-Kit is a cross platform security toolkit and framework that can automate most of the pentesting engagement from the recon to reporting phase
This Python application is an OSINT (Open Source Intelligence) tool called "Ominis OSINT - Web Hunter." It performs online information gathering by querying Google for search results related to a user...
A list of GitHub accounts that you will find useful for OSINT.
OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book and OSINT tips
OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.
Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.
Emora is an OSINT tool like sherlock but with a GUI, which search for accounts by username across social networks
Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality revolves around searching for domain-related data, including do...
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
Coeus 🌐 is an OSINT ToolBox empowering users with tools for effective intelligence gathering from open sources. From social media monitoring 📱 to data analysis 📊, it offers a centralized platform f...
A tool for quickly collecting function selectors and decoding signatures from on-chain EVM bytecode.
OSINT web scraper for SatNow to extract details about satellite components and subsystem specs for in-depth reconnaissance 🛸
Provides public bug bounty programs in-scope data that offer rewards and monitors public bug bounty programs assets.
CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.
subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains. It fetches subdomains from various sources [crtsh, hackertargetapi, anubis, al...
This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeger.gay provider.
Hunt down social media accounts by username across social networks
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon...
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.
Emora is an OSINT tool like sherlock but with a GUI, which search for accounts by username across social networks
OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book and OSINT tips
Emora is an OSINT tool like sherlock but with a GUI, which search for accounts by username across social networks
skytrack is a planespotting and aircraft OSINT tool made using Python 🛩🔍
Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality revolves around searching for domain-related data, including do...
This Python application is an OSINT (Open Source Intelligence) tool called "Ominis OSINT - Web Hunter." It performs online information gathering by querying Google for search results related to a user...
SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.
OSINT tools for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.
OSINT web scraper for SatNow to extract details about satellite components and subsystem specs for in-depth reconnaissance 🛸
This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeger.gay provider.
A tool for quickly collecting function selectors and decoding signatures from on-chain EVM bytecode.
This project aims to be a drop-in replacement for the certstream server by Calidog. This tool aggregates, parses, and streams certificate data from multiple certificate transparency logs via websocket...
OSINT cheat sheet, list OSINT tools, wiki, dataset, article, book and OSINT tips
Newly registered Domain Monitoring to detect phishing and brand impersonation with subdomain enumeration and source code scraping
A list of GitHub accounts that you will find useful for OSINT.