awesome-osint
APTnotes
awesome-osint | APTnotes | |
---|---|---|
44 | 5 | |
16,416 | 3,410 | |
- | - | |
7.4 | 3.1 | |
7 days ago | 4 months ago | |
GNU General Public License v3.0 or later | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
awesome-osint
- OSINT List Repository Including Specialty Search Engines for Use in Penetration Testing and Other Purposes
- Seeking For OSINT Tools
- Hey guys a little upset (divorce post)
-
NAACP sues Minneapolis, alleging covert social media surveillance by cops
You can even get in on the fun yourself!
- Can someone help me understand what is OSINT good for, and also a list of curated resources to get into it?
- What are some good websites for osint??
-
who was in the wrong here?
Linking them together? Probably some form of Open Source Intelligence.
- Learning from and paying the vigilantes
- Hey I'm new not sure if it has been mentioned before but there is a great web based OSINT Resource, tools from EVERY CATEGORY.
-
Maigret: an easy-to-use and powerful OSINT tool for collecting a dossier on a person by username instant from thousands of sites.
Please note that using maigret from github you violate the copyright of the Snoop Project (because its database is illegally used there - the most valuable thing in this software).
APTnotes
-
Ask HN: What Happened with the Grugq Article?
>with case studies and getting as niche on specific things as possible.
Then definitely you can touch on APT marketplace, unlike the usual zeroday ones, those are -as the name implies, advanced, and mostly are state sponsored, you can find some of these in this sheet [1], or other sources [2] or older ones [3]. Now, for other zero day exploits, you can dig into your typical threat intelligence feeds to have an idea, some of these are daily updated [4] [5] [6] among a lot more of other resources, there are also underground databases for zero day and even APT updated as of yesterday, and also online marketplaces for those where you can buy/sell compromised RDP servers / webmail / cPanels / etc., or even services like smtp-sms for phishing among others, unfortunately, I can’t and won’t list any of these in here for obvious reasons, however, if you dig a little deeper definitely you will find something, just don’t use the usual search engines and normal channels, and get the usual security precautions like sandbox/vpns/etc. when access any of these sites, preferably in an isolated OS too.
And thanks, not expert enough for sure!
[1] https://docs.google.com/spreadsheets/u/1/d/1H9_xaxQHpWaa4O_S...
[2] https://gist.github.com/Neo23x0/c4f40629342769ad0a8f3980942e...
[3] https://github.com/kbandla/APTnotes
[4] https://bazaar.abuse.ch/browse/
[5] https://www.exploitalert.com/browse-exploit.html
[6] https://threatfox.abuse.ch/browse/
-
Seeking Datasets on Malware
I trained up this repo in my privateGPT - https://github.com/kbandla/APTnotes
- Le Burkina Faso
-
Cybersecurity Repositories
APT Notes
- Les ressortissants russes en France reçoivent en ce moment sur leurs numéros de téléphone russe des demandes pour l'enrôlement dans l'armée en vue de la guerre avec l'Ukraine
What are some alternatives?
holehe - holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.
data - APTnotes data
sherlock - 🔎 Hunt down social media accounts by username across social networks
ThreatHunter-Playbook - A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
seeker - Accurately Locate Smartphones using Social Engineering
awesome-ctf - A curated list of CTF frameworks, libraries, resources and softwares
Mastodon - Your self-hosted, globally interconnected microblogging community
osx-and-ios-security-awesome - OSX and iOS related security tools
PENTESTING-BIBLE - articles
awesome-adversarial-machine-learning - A curated list of awesome adversarial machine learning resources
social-analyzer - API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
awesome-iocs - A collection of sources of indicators of compromise.