Red-Team-Infrastructure-Wiki
awesome-osint
Red-Team-Infrastructure-Wiki | awesome-osint | |
---|---|---|
3 | 44 | |
3,884 | 16,651 | |
- | - | |
1.2 | 7.0 | |
about 1 year ago | 11 days ago | |
BSD 3-clause "New" or "Revised" License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Red-Team-Infrastructure-Wiki
-
Phishing Infrastructure Resources?
I found this as a useful starting point: https://github.com/bluscreenofjeff/Red-Team-Infrastructure-Wiki
- Some information and advice about DDoS, from someone who was there during #opPayback
-
logging into a raspberry pi
We have done it by connecting a Huawei LTE-Stick to a Raspberry Pi with Kali Linux. It automatically sets up a VPN connection to a control server in AWS where we have red teaming infrastructure set up. When we then connect the rpi into the network we can do some SSH port forwarding and connect to the rpi, which is now a network implant where we can do basically anything from. This sometimes requires finding Active Directory credentials around the office or through a phishing campaign (really easy with the access to the local network) or something, in order to get a foothold onto the AD infrastructure.
awesome-osint
- OSINT List Repository Including Specialty Search Engines for Use in Penetration Testing and Other Purposes
- Seeking For OSINT Tools
- Hey guys a little upset (divorce post)
-
NAACP sues Minneapolis, alleging covert social media surveillance by cops
You can even get in on the fun yourself!
- Can someone help me understand what is OSINT good for, and also a list of curated resources to get into it?
- What are some good websites for osint??
-
who was in the wrong here?
Linking them together? Probably some form of Open Source Intelligence.
- Learning from and paying the vigilantes
- Hey I'm new not sure if it has been mentioned before but there is a great web based OSINT Resource, tools from EVERY CATEGORY.
-
Maigret: an easy-to-use and powerful OSINT tool for collecting a dossier on a person by username instant from thousands of sites.
Please note that using maigret from github you violate the copyright of the Snoop Project (because its database is illegally used there - the most valuable thing in this software).
What are some alternatives?
gophish - Open-Source Phishing Toolkit
holehe - holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.
i2pd - 🛡 I2P: End-to-End encrypted and anonymous Internet
sherlock - 🔎 Hunt down social media accounts by username across social networks
awesome-selfhosted - A list of Free Software network services and web applications which can be hosted on your own servers
seeker - Accurately Locate Smartphones using Social Engineering
PhishDock - Automated Docker infrastructure with Gophish, Nginx Proxy Manager, Nginx and PHP
Mastodon - Your self-hosted, globally interconnected microblogging community
sovereign - A set of Ansible playbooks to build and maintain your own private cloud: email, calendar, contacts, file sync, IRC bouncer, VPN, and more.
PENTESTING-BIBLE - articles
ScareCrow - ScareCrow - Payload creation framework designed around EDR bypass.
social-analyzer - API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites