OSINT工具
开源网络情报(Open source intelligence ),简称OSINT
| 名称 | 备注 | 链接 |
|---|---|---|
| GooFuzz | https://github.com/m3n0sd0n4ld/GooFuzz | |
| gosint | https://github.com/1in9e/gosint |
社工钓鱼
| 名称 | 备注 | 链接 |
|---|---|---|
| follina-Office | 钓鱼文档生成 | https://github.com/komomon/CVE-2022-30190-follina-Office-MSDT-Fixed |
| flightaware | 航班信息查询 | https://flightaware.com/ |
| gofish | https://gofi.sh/ | |
| goblin | 钓鱼 | https://github.com/xiecat/goblin |
| grabify | 手机定位追踪 | https://grabify.icu/cn.php |
| idcardgenerator | 身份证图片生成 | https://github.com/airob0t/idcardgenerator |
| LoginFish | 登录框钓鱼 | https://github.com/code-scan/LoginFish |
| PxFish | https://github.com/P1umStar/PxFish | |
| sendMail | https://github.com/Yang0615777/sendMail | |
| ps1encode | javascript反弹shell生成 | https://github.com/CroweCybersecurity/ps1encode |
| Powershell_fisher | powershell收集主机信息 | https://github.com/kalivim/Powershell_fisher |
| Retrieval-based-Voice-Conversion-WebUI | 基于AI的变声器 | https://github.com/RVC-Project/Retrieval-based-Voice-Conversion-WebUI |
| verifyemail | https://github.com/Tzeross/verifyemail | |
| wifite | wifi攻击 | https://github.com/derv82/wifite |
| WiFiPhisher | https://github.com/wifiphisher/wifiphisher | |
| zphisher | https://github.com/htr-tech/zphisher |
社工情报
| 名称 | 备注 | 链接 |
|---|---|---|
| 360APT情报 | APT情报https://apt.360.net/ | |
| APT组织信息收集 | APT情报 | https://docs.google.com/spreadsheets/u/1/d/1H9_xaxQHpWaa4O_Son4Gx0YOIzlcBWMsdvePFX68EKU/pubhtml# |
| apt | APT情报 | https://xu-an.gitbook.io/sec/ab/apt |
| EmailAll | https://github.com/Taonn/EmailAll | |
| subDomains | 互联网公司子域收集 | https://github.com/starnightcyber/subDomains |
| personal-data-leak-check | 信息泄露检测 | https://cybernews.com/personal-data-leak-check |
| holehe | osint检测工具,检测邮件使用情况 | https://github.com/megadose/holehe |
| iknowwhatyoudownload | 下载记录 | https://iknowwhatyoudownload.com/en/peer/ |
| ICWATCH领英信息泄露 | https://icwatch.wikileaks.org/ | |
| Mailget | https://github.com/Ridter/Mailget | |
| reg007 | 查询注册记录 | https://www.reg007.com/ |
| pipl | 搜人网站 | https://pipl.com/ |
| spokeo | 搜人网站 | https://www.spokeo.com/ |
| infospace | 搜人网站|外网 | https://www.infospace.com/ |
| intelius | 搜人网站 | https://www.intelius.com/ |
| radaris | 搜人网站 | https://radaris.com/ |
| echosec | 搜人网站 | https://app.echosec.net/ |
| zoominfo | 搜人网站|外网 | https://www.zoominfo.com/ |
| zabasearch | 搜人网站|外网 | https://www.zabasearch.com/ |
参数爆破
| 名称 | 备注 | 链接 |
|---|---|---|
| ffuf | 请求头爆破 | https://github.com/ffuf/ffuf |
口令爆破
| 名称 | 备注 | 链接 |
|---|---|---|
| DBScanner | https://github.com/se55i0n/DBScanner | |
| F-Scrack | 口令爆破 | https://github.com/qianniaoge/F-Scrac |
| Flask-Unsign | flask secret_key爆破 | https://github.com/Paradoxis/Flask-Unsign |
| c-jwt-cracker | flask secret_key爆破 | https://github.com/brendan-rius/c-jwt-cracker |
| MyJWT | flask secret_key爆破 | https://github.com/tyki6/MyJWT |
| php_mt_seed | php的mt_rand()种子爆破工具 | https://github.com/openwall/php_mt_seed https://www.openwall.com/php_mt_seed/ |
| hydra | https://github.com/vanhauser-thc/thc-hydra/releases | |
| SNETCracker | 超级弱口令检测工具 | https://github.com/shack2/SNETCracker |
| web_pwd_common_crack | https://github.com/TideSec/web_pwd_common_crack |
字典工具
| 名称 | 类型 | 备注 | 链接 |
|---|---|---|---|
| CeWL | 字典生成 | https://github.com/digininja/CeWL | |
| funNLP | 字典 | https://github.com/fighting41love/funNLP | |
| fuzzDicts | 字典 | https://github.com/TheKingOfDuck/fuzzDicts | |
| Fuzzdb | 字典 | https://github.com/Fuzzdb-project/Fuzzdb | |
| IDgen | https://github.com/mritd/idgen | ||
| id-number-util | 字典生成 | 使用Python随机生成身份证号码及校验、识别、扫描 | https://github.com/jayknoxqu/id-number-util |
| PentesterSpecialDict | 字典 | https://github.com/ppbibo/PentesterSpecialDict | |
| psudohash | 字典生成 | https://github.com/t3l3machus/psudohash | |
| pydictor | 字典生成 | https://github.com/LandGrey/pydictor |
临时号码
| 名称 | 备注 | 链接 |
|---|---|---|
| 云短信 | 国外 | https://www.storytrain.info/ |
| 接号码 | 国内外 | https://jiemahao.com/ |
| 云接码 | 国内外 | https://yunjiema.net/ |
| 小鸟接码 | 国外 | http://www.xnsms.com/ |
| 超级云短信 | 国内外 | https://www.supercloudsms.com/zh/ |
| 114sim | 国外 | http://www.114sim.com/ |
| 7sim | 国内外 | https://7sim.net/ |
| bestsms | 国内外 | https://bestsms.xyz/ |
| freereceivesms | 国外 | https://www.freereceivesms.com/ |
| GetFreeSMSNumber | 国外 | https://getfreesmsnumber.com/ |
| goinsms | 国内外 | https://www.goinsms.xyz/ |
| LotHelper | 国外 | https://www.lothelper.com/cn |
| mianfeisms | 国内外 | https://www.mianfeisms.xyz/ |
| mianfeisms | 国内外 | https://mianfeijiema.com/ |
| Send free SMS 33 | 国外 | https://sms.sellaite.com/ |
| SMS24 | 国内外 | https://sms24.me/en/ |
| smscodeonline | 国外 | https://smscodeonline.com/ |
临时邮箱
| 名称 | 备注 | 链接 |
|---|---|---|
| 24mail | 24小时 | http://24mail.chacuo.net/ |
| 9em | 10 分钟 | https://9em.org/ |
| 10minutemail | 10 分钟 | https://10minutemail.com/ |
| crazymailing | 10 分钟 | https://www.crazymailing.com/login |
| dropmail | https://dropmail.me/zh/ | |
| emailondeck | https://www.emailondeck.com/zh-cn/ | |
| maildrop | https://maildrop.cc/ | |
| mailsac | https://mailsac.com | |
| moakt | 60分钟 | https://www.moakt.com/ |
| mohmal | 一次性 | https://www.mohmal.com/zh |
| nowmymail | 60分钟 | http://www.nowmymail.com |
| obagg | https://od.obagg.com/ | |
| shorttimemail | 30分钟 | https://shorttimemail.com/zh-Hans |
| tempmail | https://tempmail.altmails.com/ | |
| yopmail | 5日 | http://www.yopmail.com/zh/ |
手机渗透
| 名称 | 备注 | 链接 |
|---|---|---|
| NetHunter | https://www.kali.org/get-kali/#kali-mobile | |
| andrax | https://iodroid.net/en/andrax-en/ | |