osmedeus
nuclei
Our great sponsors
osmedeus | nuclei | |
---|---|---|
2 | 17 | |
5,083 | 17,234 | |
- | 3.7% | |
6.4 | 9.8 | |
10 days ago | 3 days ago | |
Go | Go | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
osmedeus
- osmedeus - workflow engine for network osint
-
How do I automate recon for 450+ hosts? Sn1per alternatives
I've used https://github.com/yogeshojha/rengine and https://github.com/j3ssie/Osmedeus with great success.
nuclei
-
The 36 tools that SaaS can use to keep their product and data safe from criminal hackers (manual research)
Nuclei
- Show HN: Oneleet β Penetration Testing for SoC 2 and beyond
-
Looking for short-term, resource intensive tasks to throw at a cloud server
If you own any web properties, you can use https://github.com/projectdiscovery/nuclei running in a beefy VM to scan them for vulnerabilities. It will scale to use all available resources if you give it a big box.
-
Pentesting Tools I Use Everyday
Learn more about nuclei here: https://nuclei.projectdiscovery.io/
-
How I found 130+ Sub-domain Takeover vulnerabilities using Nuclei
Read about how I was able to find 136 Sub-domain Takeover vulnerabilities on a Single Target using the Nuclei tool πππClick Here - How I found 130+ Sub-domain Takeover vulnerabilities using Nuclei
-
How to develope a Network Vuln Scanner
Iβd look at flan and nmap and nuclei for inspiration.
-
Thoughts on Vuln scanning public facing websites/hosts during an incident?
Had an idea to leverage the community vuln scanner Nuclei (https://nuclei.projectdiscovery.io/) to just run a quick scan against the public facing hostname/IP. The job isn't supposed to be "hey you're vulnerable to xyz, but to aid in the discovering initial access. I believe this would be considered "good faith" and you're not technically be doing anything nefarious, but wanted to get the communities thoughts on this.
- Nuclei β Community Powered Vulnerability Scanner
-
Log4J Network Scanning/Detection on a 100k+ Node Network
Check out Nuclei (https://github.com/projectdiscovery/nuclei)
What are some alternatives?
Osintgram - Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname
jaeles - The Swiss Army knife for automated Web Application Testing
Reconnoitre - A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
ZAP - The ZAP core project
email2phonenumber - A OSINT tool to obtain a target's phone number just by having his email address
SQLMap - Automatic SQL injection and database takeover tool
evillimiter - Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.
ffuf - Fast web fuzzer written in Go
Awesome-Bugbounty-Writeups - A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
RustScan - π€ The Modern Port Scanner π€
trape - People tracker on the Internet: OSINT analysis and research tool by Jose Pino
masscan - TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.