My subdomain enumeration script. It's unique in the way it is built upon.

Convolutional neural network for analyzing pentest screenshots

Simple wrapper around gitleaks to enumerate publicly facing repos belonging to an org and then run gitleaks against each in search of exposed secrets/keys.

Source code blog article "Use Python to Scrape LinkedIn Profiles"

Semgrep rules registry

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

🦄🔒 Awesome list of secrets in environment variables 🖥️

A tool for exploring each layer in a docker image

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.

🕵️‍♂️ Offensive Google framework.

API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites

Never ever ever use pixelation as a redaction technique

An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.

Like jq, but for HTML.

Import, visualize, and analyze SpiderFoot scans in Neo4j, a graph database

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Command line tool to search s3 buckets and match filenames or file contents against keywords or regex strings

Find netblocks owned by a company

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

🤖 The Modern Port Scanner 🤖

Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

A command-line utility for taking automated screenshots of websites

🔍 gowitness - a golang, web screenshot utility using Chrome Headless

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

OSINT tool for discovering the real IP addresses of services which are behind Cloudflare but not properly locked down

Automating situational awareness for cloud penetration tests.

Recurrent Neural Network SubDomain Discovery Tool

A projectdiscovery driven attack surface monitoring bot powered by axiom