We have collection of more than 1 Million open source products ranging from Enterprise product to small libraries in all platforms. We aggregate information from all open source repositories. Search and find the best for your needs. Check out projects section.
Photon - Incredibly fast crawler designed for recon.
The extracted information is saved in an organized manner or can be exported as json. Control timeout, delay, add seeds, exclude URLs matching a regex pattern and other cool stuff. The extensive range of options provided by Photon lets you crawl the web exactly the way you want.
crawler spider osint information-gatheringStriker - Striker is an offensive information and vulnerability scanner.
Striker is an offensive information and vulnerability scanner. Want to see what else it can do? Try it yourself.
cloudflare information-gathering recon theharvester harvester dnsdumpster email cms-detector parameterRED_HAWK - All in one tool for Information Gathering, Vulnerability Scanning and Crawling
RED HAWK's CMS Detector currently is able to detect the following CMSs (Content Management Systems) in case the website is using some other CMS, Detector will return could not detect. Want to contribute to RED HAWK or point out something wrong? Just create a new issue here: https://github.com/Tuhinshubhra/RED_HAWK/issues/new I'd love to hear from you.
scanner crawler information-gathering admin-scanner backups-finder sql-vulnerability-scannig cms-detector cloudflare-detection geo-ip subdomain-scanner reverse-ip-scan whois-lookup subnet-lookup http-header sql-scanner wordpress wordpress-scanner mx-lookup domain-authority-scanner page-authority-scannerRaccoon - A high performance offensive security tool for reconnaissance and vulnerability scanning
Raccoon is a tool made for reconnaissance and information gathering with an emphasis on simplicity. It will do everything from fetching DNS records, retrieving WHOIS information, obtaining TLS data, detecting WAF presence and up to threaded dir busting and subdomain enumeration. Every scan outputs to a corresponding file. As most of Raccoon's scans are independent and do not rely on each other's results, it utilizes Python's asyncio to run most scans asynchronously.
reconnaissance scanner vulnerability-assessment vulnerability-scanner enumeration pentesting pentest-tool hacking-tool offensive-security security-scanner fuzzing information-gathering hacking raccoon osintTh3inspector - Th3Inspector 🕵️ Best Tool For Information Gathering 🔎
Th3Inspector 🕵️ Best Tool For Information Gathering 🔎
information-gathering reverse-phone-lookup mx-lookup whois-lookup geo-ip cloudflare age-check user-agent port-scanner credit-card-scaning subdomain-scanner email-validation cms-detector dns-record reverse-ip-scan traceroute geoip whois lookup iplocationsandmap - Sandmap is a tool supporting network and system reconnaissance using the massive Nmap engine
Sandmap is a tool supporting network and system reconnaissance using the massive Nmap engine. It provides a user-friendly interface, automates and speeds up scanning and allows you to easily use many advanced scanning techniques. Before using the Sandmap read the Command Line introduction.
nmap nmap-scripts port-scanner network-scanner network-discovery service-discovery information-gathering nse nsescript cli command-line hacking hacking-tool kali-linux kali-scripts backboxReconDog - Reconnaissance Swiss Army Knife
Recon Dog requires no manual configuration and can be simply run as a normal python script. However, a debian package can be downloaded from here if you want to install it. Wizard interface is the most straightforward way you can use Recon Dog in. Just run the program, select what you want to do and enter the target, it's that simple.
recon information-gathering honeypot-detector subdomain-enumeration cms-detectortactical-exploitation - Modern tactical exploitation toolkit.
I've always been a big proponent of a tactical approach to penetration testing that does not focus on exploiting known software vulnerabilities, but relies on old school techniques such as information gathering and brute force. While being able to appreciate the occasional usefulness of a well-timed 0day, as a veteran penetration tester I favor an exploit-less approach. Tactical exploitation provides a smoother and more reliable way of compromising targets by leveraging process vulnerabilities, while minimizing attack detection and other undesired side effects. This repository aims to provide a tactical exploitation toolkit to assist penetration testers during their assignments. The tools currently released are described below. See also http://www.0xdeadbeef.info/ for some older tools and techniques.
penetration-testing active-directory information-gathering brute-force metasploit-frameworkotseca - Open source security auditing tool to search and dump system configuration
The main assumption of creating this tool was easier and faster delivery of commands sets to be performed on customer environments. As a result of such a scan I wanted to get the most useful information about system components that will be subjected to penetration tests and audits at a later time. Otseca facilitates collection of many important information about a given system.
system system-config system-information pentesting auditing information-gathering system-analysis security-audit security-tools dump cybersecurity reporting html-reportdirsearch - A Go implementation of dirsearch.
DirSearch takes an input URL ( -url parameter ) and a wordlist ( -wordlist parameter ), it will then perform concurrent HEAD requests using the lines of the wordlist as paths and files eventually bruteforcing folders and files on a web server. This project is copyleft of Simone Margaritelli and released under the GPL 3 license.
security-tools security-audit dirsearch dirbuster bruteforce wordlist enumeration information-gatheringeyes - 👀 🖥️ Golang rewrite of eyes
eyes is complete Golang rewrite of the eyes.sh BASH script that scans domains and IP addresses for relevant information. It is useful for information gathering during penetration testing, and it utilizes APIs to keep your identity safe. This program is a Golang adaptation of the eyes.sh BASH script, which is a BASH adaptation of ReconDog.
pentesting pentest-tool penetration-testing information-gathering reconnaissanceeyes
eyes is a BASH script that scans domains and IP addresses for relevant information. It is useful for information gathering during penetration testing, and it utilizes APIs so as to keep your identity safe. This script is a BASH adaptation of ReconDog.
pentesting pentest-tool penetration-testing information-gatheringhacker-roadmap - :pushpin: A guide for amateurs pen testers and a collection of hacking tools, resources and references to practice ethical hacking, pen testing and web security
This repository is a guide for amateurs pen testers and a summary of hacking tools, resources and references to practice ethical hacking, pen testing and web security. Most of these tools are UNIX compatible and MIT licensed. Note that Linux is the best operating system to practice ethical hacking. Penetration testing is a type of security testing that is used to test the insecurity of an application. It is conducted to find the security risk which might be present in the system.
hacking hacking-tool penetration-testing roadmap frameworks hacktools pentest web-hacking exploitation post-exploitation vulnerabilities information-gatheringGitmails - An information gathering tool to collect git commit emails in version control host services
Gitmails explores that git commits contains a name and an email configured by the author and that version control host services are being used to store a lot of projects. With these steps, Gitmails can collect all emails found in commit history for a specific target.
git emails harvester pentest-tool information-gathering github gitlab bitbucketEternalView - EternalView is an all in one basic information gathering and vulnerability assessment tool
EternalView is an all in one basic information gathering and vulnerability assessment tool
information-gathering nmap whois-information dos-attack traceroute ip-locator autopwn bash shell shell-script bash-script vulnerability-detectionHamburglar - Hamburglar -- collect useful information from urls, directories, and files
Inspiration came from needmorecowbell/sniff-paste, I wanted the same regex scraping but for every file in a given directory.
information-gathering python3
We have large collection of open source products. Follow the tags from
Tag Cloud >>
Open source products are scattered around the web. Please provide information
about the open source projects you own / you use.
Add Projects.
