#Osint-resources
Showing 54 of 54 repositories tagged #osint-resources, ranked by stars
Open-source intelligence for the global theater. Track everything from the corporate/private jets of the wealthy, and spy satellites, to seismic events in one unified interface. Hook an AI agent up to have it parse through data and find previously unseen correlations. The knowledge is available to all but rarely aggregated in the open, until now.
π Search anyone's digital footprint across 300+ websites
Tookie is a advanced OSINT information gathering tool that finds social media accounts based on inputs.
Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc...
Asset inventory of over 800 public bug bounty programs.
Python 3.5+ DNS asynchronous brute force utility
Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers
GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & more.
Coeus π is an OSINT ToolBox empowering users with tools for effective intelligence gathering from open sources. From social media monitoring π± to data analysis π, it offers a centralized platform for seamless OSINT investigations.
π This is a collection of hackingπ₯ and pentesting π§ scripts to help with enumeration, OSINT, exploitation and post exploitation automated scripts to make hacking easierπ . Have fun!π
A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.
This repository updates latest Bug Bounty medium writeups every 10 minutes, https://readmedium.com/Medium_URL, https://archive.ph/Medium_URL, https://freedium.cfd/Medium_URL
Archive of Potential Insider Threats
Custom wordlist, updated regularly
a rough written "guide" compiled from years of ADHD brain notes - enjoy
This repo Gathers all available cve exploits from github.β οΈ Be careful Malware.
COMPLETE OSINT CHEAT-SHEET
I am using these OSINT tools. This list include important domains of OSINT and their respective tools.
πΈ an Instagram tracking script that logs any changes to an Instagram account (followers, following, posts, and bio) written in Python.
An OSINT focused tool made with Nodejs!
One Liner OSINT is a collection of powerful one-liner commands for Open-Source Intelligence (OSINT) gathering.
The OSINT Framework is a powerful collection of tools and methods designed for open-source intelligence gathering. This framework covers a wide range of categories to help security researchers, investigators, and analysts uncover crucial information effectively.
Extension Osint Sync
XSSRecon automates the process of testing URL parameters for reflection of a test payload rix4uni and further checks how special characters are handled (allowed, blocked, or converted).
A powerful subdomain enumeration tool that aggregates data from multiple sources to create comprehensive lists of root subdomains.
A powerful Go tool for finding origin IPs of domains by querying multiple security APIs and validating results with built-in HTTP client.
A tool designed to analyse email headers
Useful OSINT tools
Get 10k subdomains in securitytrails using cookie without apikey.
This repo collects nuclei template from 600+ github repos, updates every 6 hours.
A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.
hacking framework complete source-code for web, wifi, url, sql-injection and doing a complete web scan for starters.
High-speed Go email scraper that crawls sites and internal links concurrently to collect email addresses for reconnaissance, research, or sales intelligence.
A repo of useful CyberSec tools/urls, OSINT, Linux security resources, and more.
Scrape all wordpress plugins (updates every 6 hour)
List of Fresh DNS resolvers updates every 1 hour
A powerful URL parameter and request fuzzing tool that processes URLs or Burp Suite raw requests, replacing values with custom payloads while maintaining unique parameter combinations.
Hunt down social media accounts by username across social networks using httpx
List of Public Bug Bounty and Responsible Disclosure Programs
gosqli is a fast and simple tool for detecting blind SQL injection vulnerabilities. It supports scanning URLs with custom payloads, parallel requests, and response time-based verification.
IP Finder tool, ipfinder collects IP addresses from Shodan search queries.
vulntechfinder is a powerful security tool that automates vulnerability scanning based on technology stack detection. It intelligently processes hosts through tech stack identification and executes targeted scans using tools like Nuclei and httpx.
A high-performance command-line utility for processing and managing unique lines from input streams. Combining the functionality of sort, uniq, and tee, unew efficiently filters duplicates while offering advanced features like file splitting, shuffling, and case-insensitive processing.
A powerful and efficient Go-based tool for extracting archived URLs from the Wayback Machine with advanced filtering capabilities, rate limiting, and automatic retries.
A simple tool that allows you to organize all the Nuclei templates offered by the community in one place
A high-performance technology detection tool built with Go, leveraging the projectdiscovery wappalyzergo library to identify web technologies and frameworks.
Find input and textarea hidden parameters in html.
XSS, SQLI, LFI, RCE Practice Labs in php
portmap is a fast portscan tool, uses shodan public data for port scan used internetdb.shodan.io and api.shodan.io/shodan/host
certinfo is a powerful SSL certificate scraping tool that extracts domain names from SSL certificates of arbitrary hosts. It supports both basic certificate data extraction and recursive subdomain enumeration through Certificate Subject Alternative Names (SANs).
Useful "Match and Replace" & "TLS Pass Through" in Burpsuite Rules
Email OSINT tool, emailfinder collects emails from different sources like Google, DuckDuckGo, Bing, Yahoo, Yandex, Github, etc.