api-dnsdumpster |
29.f8cce1f |
Unofficial Python API for http://dnsdumpster.com/. |
|
basedomainname |
0.1 |
Tool
that can extract TLD (Top Level Domain), domain extensions (Second
Level Domain + TLD), domain name, and hostname from fully qualified
domain names. |
|
bing-ip2hosts |
0.4 |
Enumerates all hostnames which Bing has indexed for a specific IP address. |
|
catnthecanary |
7.e9184fe |
An application to query the canary.pw data set for leaked data. |
|
cutycapt |
10 |
A Qt and WebKit based command-line utility that captures WebKit's rendering of a web page. |
|
dnsbrute |
2.b1dc84a |
Multi-theaded DNS bruteforcing, average speed 80 lookups/second with 40 threads. |
|
dnsenum |
1.2.4.2 |
Script
that enumerates DNS information from a domain, attempts zone transfers,
performs a brute force dictionary style attack, and then performs
reverse look-ups on the results. |
|
dnsrecon |
0.8.9 |
Python script for enumeration of hosts, subdomains and emails from a given domain using google. |
|
dnsspider |
0.8 |
A very fast multithreaded bruteforcer of subdomains that leverages a wordlist and/or character permutation. |
|
dnstracer |
1.9 |
Determines where a given DNS server gets its information from, and follows the chain of DNS servers |
|
dnswalk |
2.0.2 |
A DNS debugger |
|
domain-analyzer |
0.8.1 |
Finds all the security information for a given domain name. |
|
dradis |
3.0.0.rc1 |
An open source framework to enable effective information sharing. |
|
enum4linux |
0.8.9 |
A tool for enumerating information from Windows and Samba systems. |
|
facebot |
23.57f6025 |
A facebook profile and reconnaissance system. |
|
fbid |
11.b8106f8 |
Show info about the author by facebook photo url. |
|
flashlight |
107.39594b5 |
Automated Information Gathering Tool for Penetration Testers. |
|
geoedge |
0.2 |
This
little tools is designed to get geolocalization information of a host,
it get the information from two sources (maxmind and geoiptool). |
|
githack |
6.b83a744 |
A `.git` folder disclosure exploit. |
|
gitminer |
29.e25f339 |
Tool for advanced mining for content on Github. |
|
goodork |
2.2 |
A python script designed to allow you to leverage the power of google dorking straight from the comfort of your command line. |
|
goofile |
1.5 |
Command line filetype search |
|
goog-mail |
1.0 |
Enumerate domain emails from google. |
|
gwtenum |
7.f27a5aa |
Enumeration of GWT-RCP method calls. |
|
halcyon |
0.1 |
A repository crawler that runs checksums for static files found within a given git repository. |
|
hasere |
1.0 |
Discover the vhosts using google and bing. |
|
idswakeup |
1.0 |
A collection of tools that allows to test network intrusion detection systems. |
|
intrace |
1.5 |
Traceroute-like application piggybacking on existing TCP connections |
|
ircsnapshot |
94.cb02a85 |
Tool to gather information from IRC servers. |
|
ivre |
1027.1b9acae |
Network recon framework. |
|
kacak |
1.0 |
Tools for penetration testers that can enumerate which users logged on windows system. |
|
lanmap2 |
127.1197999 |
Passive network mapping tool. |
|
lbd |
20130719 |
Load Balancing detector |
|
ldapenum |
0.1 |
Enumerate domain controllers using LDAP. |
|
lft |
3.76 |
A layer four traceroute implementing numerous other features. |
|
linux-exploit-suggester |
32.9db2f5a |
A Perl script that tries to suggest exploits based OS version number. |
|
loot |
51.656fb85 |
Sensitive information extraction tool. |
|
machinae |
61.67b9725 |
A tool for collecting intelligence from public sites/feeds about various security-related pieces of data. |
|
mdns-recon |
7.cf67423 |
An mDNS recon tool written in Python. |
|
metagoofil |
1.4b |
An information gathering tool designed for extracting metadata of public documents |
|
missidentify |
1.0 |
A program to find Win32 applications. |
|
monocle |
1.0 |
A
local network host discovery tool. In passive mode, it will listen for
ARP request and reply packets. In active mode, it will send ARP requests
to the specific IP range. The results are a list of IP and MAC
addresses present on the local network. |
|
nasnum |
5.df5df19 |
Script to enumerate network attached storages. |
|
necromant |
3.acbc448 |
Python Script that search unused Virtual Hosts in Web Servers. |
|
neglected |
8.68d02b3 |
Facebook CDN Photo Resolver. |
|
netdiscover |
0.3 |
An
active/passive address reconnaissance tool, mainly developed for those
wireless networks without dhcp server, when you are wardriving. It can
be also used on hub/switched networks. |
|
netmask |
2.4.3 |
Helps determine network masks |
|
nipper |
0.11.7 |
Network Infrastructure Parser |
|
nsec3walker |
20101223 |
Enumerates domain names using DNSSEC |
|
ntp-ip-enum |
0.1 |
Script to pull addresses from a NTP server using the monlist command. Can also output Maltego resultset. |
|
osinterator |
3.8447f58 |
Open Source Toolkit for Open Source Intelligence Gathering. |
|
parsero |
81.e5b585a |
A robots.txt audit tool. |
|
quickrecon |
0.3.2 |
A
python script for simple information gathering. It attempts to find
subdomain names, perform zone transfers and gathers emails from Google
and Bing. |
|
recon-ng |
4.8.1 |
A full-featured Web Reconnaissance framework written in Python. |
|
revipd |
5.2aaacfb |
A simple reverse IP domain scanner. |
|
ripdc |
0.2 |
A script which maps domains related to an given ip address or domainname. |
|
sctpscan |
34.4d44706 |
A network scanner for discovery and security. |
|
shard |
1.5 |
A command line tool to detect shared passwords. |
|
simplyemail |
505.159429f |
Email recon made fast and easy, with a framework to build on http://CyberSyndicates.com. |
|
sipi |
10.10f087f |
Simple IP Information Tools for Reputation Data Analysis. |
|
smbcrunch |
5.23ea4cc |
3 tools that work together to simplify reconaissance of Windows File Shares. |
|
smtp-user-enum |
1.2 |
Username guessing tool primarily for use against the default Solaris SMTP service. Can use either EXPN, VRFY or RCPT TO. |
|
sn1per |
116.58c25c7 |
Automated Pentest Recon Scanner. |
|
spfmap |
8.a42d15a |
A program to map out SPF and DKIM records for a large number of domains. |
|
spiderfoot |
2.7.0 |
The Open Source Footprinting Tool. |
|
spoofcheck |
16.8cce591 |
Simple script that checks a domain for email protections. |
|
ssl-hostname-resolver |
1 |
CN (Common Name) grabber on X.509 Certificates over HTTPS. |
|
subdomainer |
1.2 |
A tool designed for obtaining subdomain names from public sources. |
|
sysdig |
0.11.0 |
Open source system-level exploration and troubleshooting tool |
|
theharvester |
53.0f9a670 |
Python tool for gathering e-mail accounts and subdomain names from different public sources (search engines, pgp key servers). |
|
tilt |
90.2bc2ef2 |
An easy and simple tool implemented in Python for ip reconnaissance, with reverse ip lookup. |
|
tinfoleak |
3.6469eb3 |
Get detailed information about a Twitter user activity. |
|
traceroute |
2.1.0 |
Tracks the route taken by packets over an IP network |
|
treasure |
6.a91d52b |
Hunt for sensitive information through githubs code search. |
|
twofi |
2.0 |
Twitter Words of Interest. |
|
vbrute |
1.11dda8b |
Virtual hosts brute forcer. |
|
waldo |
28.a33de7a |
A lightweight and multithreaded directory and subdomain bruteforcer implemented in Python. |
|
websearch |
1.cce2384 |
Search vhost names given a host range. Powered by Bing.. |
|
whatweb |
4188.f467aa2 |
Next generation web scanner that identifies what websites are running. |
|
windows-exploit-suggester |
26.493f96a |
This
tool compares a targets patch levels against the Microsoft
vulnerability database in order to detect potential missing patches on
the target. |
|
zgrab | 631.bb14ac8 | Grab banners (optionally over TLS). | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | |