assetfinder
breach-parse
assetfinder | breach-parse | |
---|---|---|
3 | 4 | |
2,810 | 1,711 | |
- | - | |
0.0 | 0.0 | |
5 months ago | about 1 month ago | |
Go | Shell | |
MIT License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
assetfinder
-
Laramies / TheHarvester Emails, Subdomains and Names Harvester – Osint
assetfinder from Tomnomnom is a great tool for sub-domain enumeration:
https://github.com/tomnomnom/assetfinder
-
Intellingence-Resources
Assetfinder - https://github.com/tomnomnom/assetfinder
- Is there any good alternative to sublist3r
breach-parse
-
Command to execute Breach-Parse?
I'm having a devil of a time trying to use Heath Adams' Breach-Parse tool (https://github.com/hmaverickadams/breach-parse). I've re-installed it multiple times to try and fix, but I am consistently getting "Command Not Found" when I try to use it. I've tried executing with "breach-parse", "breachparse", "b-p", "bp", etc.; anything that came to mind.
-
Where can I find leaked databases containing usernames and passwords?
2 useful resources are: dehashed.com and https://github.com/hmaverickadams/breach-parse from heath adams. Keep in mind that it is not a good idea to use these in an unethical way. Doing illegal stuff can and will get you in trouble.
-
I'm looking for the password lists that haveibeenpwned.com has so I can illustrate to a client, with permission, how easy it is to get their reused passwords
It's not going to be as easy as you envision -- the part about easily gaining access to their systems. Playing around with this tool can give you a feel for why when you practice your pitch: https://github.com/hmaverickadams/breach-parse
-
Intellingence-Resources
breach-parse - https://github.com/hmaverickadams/breach-parse
What are some alternatives?
subfinder - Fast passive subdomain enumeration tool.
gowitness - 🔍 gowitness - a golang, web screenshot utility using Chrome Headless
amass - In-depth attack surface mapping and asset discovery
sublime_text - Issue tracker for Sublime Text
httprobe - Take a list of domains and probe for working HTTP and HTTPS servers
theHarvester - E-mails, subdomains and names Harvester - OSINT
WhatsMyName - This repository has the JSON file required to perform user enumeration on various websites.
CherryTree - cherrytree
Joplin - Joplin - the secure note taking and to-do app with synchronisation capabilities for Windows, macOS, Linux, Android and iOS.
Intelligence-resources - https://dev.to/attaullahshafiq10/intellingence-resources-7dk