CLI tool for open source and threat intelligence.
Bruteforce and enumerate Active Directory accounts through Kerberos pre-authentication.
Passive hostname, domain and IP lookup tool for non-robots.
Consulting different intelligence services, search engines and datasets for OSINT.
Domain & IP data intelligence for greater enterprise security.
Making favicon.ico based recon great again.
Perform OSINT scan on email/domain/ip address/organization.
Domain availability checker.
Link a domain with registered organisation names and emails, to other domains.
Domain name permutation engine for detecting several types of attacks.
Domain name permutation engine written in Go.
OSINT from your favorite services in a friendly terminal user interface.
Smart DNS Brute Forcer.
Enumerate information from NTLM authentication enabled web endpoints.
Generate similar-looking domains for phishing attacks.
Gather information about the Active Directory and generates a report.
Domain user enumeration tool.
All in one recon tool that just get a single domain name and do all of the work alone.
Enumerate usernames on a domain where you have no creds by using SMB relay.
Gather gather gather.
Checks expired domains to determine good candidates for phishing and C2 domain names.
Spray shadow credentials across an entire domain.
A tool to monitor for potential spear phishing domains and send to Slack.
A tool for identifying misconfigured CloudFront domains.
Active Directory Report Tool.
Sub domain wild card filtering tool.
Extract domains/subdomains from URLs en masse.
A rapid API for the project Sonar dataset.
Data for Security companies, researchers and teams.
Enumerate users, groups and computers from a Windows domain through LDAP queries.
Ultimate domain enumeration tool.
Try to find all subdomains, similar-domains and related-domains of an organization.
Scan all possible TLD's for a given domain name.
Collects informations related to domains whois, history, dns records and more.
Checks if a list of domains can be spoofed based on SPF and DMARC records.
Google Dork File Finder.
Enumerates DNS information of a domain and to discover non-contiguous ip blocks.
Automates OSINT for threat intelligence and mapping your attack surface.
Find related domains of a given domain.
