dggsoares's Stars
sherlock-project/sherlock
Hunt down social media accounts by username across social networks
NationalSecurityAgency/ghidra
Ghidra is a software reverse engineering (SRE) framework
Lissy93/web-check
🕵️♂️ All-in-one OSINT tool for analysing any website
robertdavidgraham/masscan
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
jivoi/awesome-osint
:scream: A curated list of amazingly awesome OSINT
rakyll/hey
HTTP load generator, ApacheBench (ab) replacement
projectdiscovery/katana
A next-generation crawling and spidering framework.
sbilly/awesome-security
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
Datalux/Osintgram
Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname
projectdiscovery/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
wpscanteam/wpscan
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com
megadose/holehe
holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.
projectdiscovery/httpx
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
OWASP/wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
duo-labs/cloudmapper
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
MISP/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
djadmin/awesome-bug-bounty
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
undergroundwires/privacy.sexy
Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy
guelfoweb/knock
Knock Subdomain Scan
projectdiscovery/interactsh
An OOB interaction gathering server and client library
sensepost/gowitness
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
intuitem/ciso-assistant-community
CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec, Compliance/Audit Management, Privacy and supporting +80 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, CyFun, AirCyber, NCSC, ECC, SCF and so much mor
darkoperator/dnsrecon
DNS Enumeration Script
tomnomnom/anew
A tool for adding new lines to files, skipping duplicates
projectdiscovery/notify
Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.
akr3ch/BugBountyBooks
A collection of PDF/books about the modern web application security and bug bounty.
dionach/CMSmap
CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.
Quitten/Autorize
Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests
ozguralp/gmapsapiscanner
fwaeytens/dnsenum
dnsenum is a perl script that enumerates DNS information