gitleaks – Check git repos for secrets and keys Gitleaks provides a way for you to find unencrypted secrets and other unwanted data types in git source code repositories. As part of its core...
GetAltName GetAltName (or GAN) is a tool that can extract Subject Alternative Names found in SSL Certificates directly from HTTPS websites which can provide you with DNS names (subdomains) or virtual servers. This code extracts subdomain names from https sites...
sn0int sn0int is an OSINT framework and package manager. It was built for IT security professionals and bug hunters to gather intelligence about a given target or about yourself. It is an enumerating attack...
nmap This library aims at providing idiomatic nmap bindings for go developers, to make it easier to write security audit tools using golang. What is nmap Nmap (Network Mapper) is a free and open-source network scanner...
cloudkicker self-hosted Azure OSINT tool It is very similar to what @DrAzureAD’s OSINT tool does (https://aadinternals.com/osint/). While this version lacks a few of the extra features, it is self-contained, requires no account, and can...
reNgine reNgine is an automated reconnaissance framework with a focus on a highly configurable streamlined recon process. reNgine is backed by a database, with data correlation and organization, the custom query “like” language for...
RustScan The Modern Port Scanner. Find ports quickly (3 seconds at its fastest). Run scripts through our scripting engine (Python, Lua, Shell supported). ✨ Features Scans all 65k ports in 3 seconds. Full scripting engine support. Automatically...
Argus Argus is an all-in-one, Python-powered toolkit designed to streamline the process of information gathering and reconnaissance. With a user-friendly interface and a suite of powerful modules, Argus empowers you to explore networks, web...
SlackEnum A user enumeration tool for Slack. Setup Clone this repository and install the necessary dependencies with the commands below. Create the cookies_dir and http_requests_dir folders defined in the settings at the top of slackenum.py. By default, these are slack_ids-cookiebro and slack_ids-burp and...
Darkus Darkus is a Onion websites searcher it uses deep/dark web searching engines to search a specific word and give you back the link results. Current Search Engines: Name Link Ahmia(Clear Web site) https://ahmia.fi...
nullinux nullinux is an internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB null sessions. Unlike many of the enumeration tools...
GShark The project is based on golang with AdminLTE to build a management system to manage the Github search results. Github API has been utilized to scrawl the related results according to keywords and...
enum4linux-ng enum4linux-ng.py is a rewrite of Mark Lowe’s (former Portcullis Labs now Cisco CX Security Labs) enum4linux.pl, a tool for enumerating information from Windows and Samba systems, aimed at security professionals and CTF players....
SecretScanner Deepfence SecretScanner can find unprotected secrets in container images or file systems. SecretScanner is a standalone tool that retrieves and searches container and host filesystems, matching the contents against a database of approximately...
Gitxray Gitxray (short for Git X-Ray) is a multifaceted security tool designed for use on GitHub repositories. It can serve many purposes, including OSINT and Forensics. gitxray leverages public GitHub REST APIs to gather information that...
uncover uncover is a go wrapper using APIs of well-known search engines to quickly discover exposed hosts on the internet. It is built with automation in mind, so you can query it and utilize...
