offensive security
Weakpass collection of tools for bruteforce and hashcracking
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
π΅οΈββοΈ Collect a dossier on a person by username from thousands of sites
Python library for accurately querying username and email usage on online platforms
An OSINT tool to search for accounts by username and email in social networks.
holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.
Toutatis is a tool that allows you to extract information from instagrams accounts such as e-mails, phone numbers and more
Tookie is a advanced OSINT information gathering tool that finds social media accounts based on inputs.
OnionSearch is a script that scrapes urls on different .onion search engines.
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Semi-automatic OSINT framework and package manager
Download pictures (or videos) along with their captions and other metadata from Instagram.
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
In-depth attack surface mapping and asset discovery
Entity graphs, OSINT data mining, and plugins. Connect unstructured and public data for transformative insights. This is the community plugins registry. π (Electron version β’ Coming soon)
π― T-Pot - The All In One Multi Honeypot Platform π