🏠
dev-angelist
HomeGitHubPortfolioTwitter/XMediumCont@ct
  • 🏠Home
  • 📒Certification Notes
    • Certified Ethical Hacker (CEH) Practical
    • CRTP
    • eWPTXv3
    • eCPPTv3
    • eWPTv2
    • eJPTv2
  • ✍️WRITEUPS & WALKTHROUGHS
    • TryHackMe (THM)
    • HackTheBox (HTB)
    • VulnHub
    • DockerLabs.es
    • PortSwigger - Web Sec Academy
    • HomeMade Labs
  • 🕸️WEB
    • eWPTXv3
    • eWPTv2
    • WAPT
    • DVWA
    • Secure Bank
    • Mutillidae II
    • WebSafeHub (WSH)
    • PortSwigger - Web Sec Academy
  • Common Services Pentest
    • Web Services - 80/443/8080
      • Tomcat
        • Lab Setup & Configuration
        • Enumeration
        • Exploitation
        • Mitigation & Hardening
    • SMB - 139/445
  • 👩‍💻CODING
    • 🐍Python
      • Python Offensive
      • Email Header Analyzer
      • Dir-Brute
      • Port-Scanner
      • Finger User Enumeration
    • DevSecOps
    • 🔹Powershell
  • 🔴Offensive Security
    • Active Directory (AD)
      • CRTP
      • AD HomeMade Lab
  • Privilege Escalation
    • Windows Privilege Escalation
  • 🔐Crypto & AI/ML
    • Crypto & Blockchain
      • Blockchain Security
        • Blockchain Architecture
          • 1.1 Characteristics and Features
          • 1.2 Core Components
          • 1.3 Consensus Algorithm
          • 1.4 Cryptography
          • 1.5 Cryptocurrency
        • Front-end Risks
          • 2.1 MFA and Blockchain
          • 2.2 Front-end
          • 2.3 OWASP Modeling for Blockchain
          • 2.4 Wallet Attacks
          • 2.5 Client Vulnerabilities
        • Back-end Risks
          • 3.1 Consensus Vulnerabilities
          • 3.2 Mining Pool Vulnerabilities
          • 3.3 Network Vulnerabilities
            • 3.3.1 DoS/DDoS/BDoS Attacks
            • 3.3.2 Delay Attacks
            • 3.3.3 Partition Attacks
            • 3.3.4 Sybil Attacks
            • 3.3.5 Time Jacking
            • 3.3.6 Transaction Attacks
        • Mining-Risks
          • 4.1 Mining Overview
          • 4.2 Proof of Stake Post Merge Ethereum
          • 4.3 Crypto Mining Malware (Cryptojacking)
          • 4.4 Zero Trust Models
          • 4.5 Byzantine Fault Tolerance
        • Blockchain as a Service
    • AI/ML Pentest
  • ACTIVE DIRECTORY
    • AD Enumeration
  • Guides & Articles
    • My Articles
    • Guides & Tutorials
      • Burp Suite - Configuration
      • Quickemu - VM
      • Setting Up SSH Keys
      • Building an AD Lab
      • Work Guidelines
  • Windows
    • Windows Enumeration
    • Windows Privilege Escalation
  • INTELLIGENCE GATHERING
    • OSINT
  • LINUX (tbd)
    • Linux Enumeration
    • Linux Privilege Escalation
Powered by GitBook
On this page
  • Main Resources 📚
  • Sockpuppet 🧦
  • Cyber Threat Intelligence & Web Search Engine Tools 🔗
  • Information Gathering Tools 🔍
  • Tools to Get Onion Links 🧅
  • Tools to Scan Onion Links 🔍
  • Tools to Crawl Data from the Dark Web 🕷️
  1. INTELLIGENCE GATHERING

OSINT

PreviousWindows EnumerationNextLinux Enumeration

Last updated 3 months ago

Main Resources 📚

  • OSINT Framework:

  • Google Hacking Database (GHDB) / Dorks:

  • Shodan (open ports in A.T):

  • Katana-ds (dork scanner):

  • Information Gathering:

  • Footprinting & Recon:

Sockpuppet 🧦

  • Sockpuppet Account Creation – My Process:

  • Creating an Effective Sock Puppet for OSINT Investigations:

Cyber Threat Intelligence & Web Search Engine Tools 🔗

  • Deep Dark CTI:

  • OSINT Framework:

  • OnionSearch:

  • Darkdump:

  • Ahmia Search Engine:

  • Darkus:

Information Gathering Tools 🔍

  • Network Map (nmap) - Network Scanner: https://github.com/nmap/nmap

  • Maltego - Visual Link Analysis: https://www.maltego.com/

  • Shodan - IoT Search Engine: https://github.com/m4ll0k/Shodanfy.py

  • Recon-ng - Web Reconnaissance Framework: https://github.com/lanmaster53/recon-ng

  • Spiderfoot - OSINT Automation Tool: https://github.com/smicallef/spiderfoot

  • theHarvester - Email and Subdomain Gatherer: https://github.com/laramies/theHarvester

  • Amass - Network Mapping of Attack Surfaces: https://github.com/OWASP/Amass

  • RED HAWK - All-In-One Scanning: https://github.com/Tuhinshubhra/RED_HAWK

  • ReconSpider - Multi-purpose Gathering Tool: https://github.com/bhavsec/reconspider

  • OSINT Framework - Information Gathering Collection: https://github.com/lockfale/OSINT-Framework

  • Infoga - Email OSINT Gatherer: https://github.com/m4ll0k/Infoga

  • Striker - Offensive Information Gathering: https://github.com/s0md3v/Striker

  • SecretFinder - API Key and Secret Finder: https://github.com/m4ll0k/SecretFinder

  • Xerosploit - Penetration Testing Toolkit: https://github.com/LionSec/xerosploit

  • FOCA - Metadata Analyzer: https://github.com/ElevenPaths/FOCA

  • ReconDog - Reconnaissance Swiss Army Knife: https://github.com/s0md3v/ReconDog

  • Metagoofil - Metadata Extractor: https://github.com/laramies/metagoofil

  • Dracnmap - Nmap Script Wrapper: https://github.com/Screetsec/Dracnmap

  • rang3r - Multi-threaded Port Scanner: https://github.com/floriankunushevci/rang3r

  • Breacher - Admin Panel Finder: https://github.com/s0md3v/Breacher

Tools to Get Onion Links 🧅

  • Hunchly - Website: hunch.ly/darkweb-osint/

  • Tor66 - Onion Link: tor66sewebgixwhcqfnp5inzp5x5uohhdy3kvtnyfxc2e5mxiuh34iid.onion/fresh

  • Darkweblink - Website: darkweblink.com, Onion Link: dwltorbltw3tdjskxn23j2mwz2f4q25j4ninl5bdvttiy4xb6cqzikid.onion

  • The Pirate Bay, Awesome torrent search engine: suprbayoubiexnmp.onion

  • Haystack search engine (very large database): haystakvxad7wbk5.onion

  • An onion search engine that does a good job of removing CP: msydqstlz2kzerdg.onion

  • ExcavaTOR (one of my favorite search engines): 2fd6cemt4gmccflhm6imvdfvli3nf7zn6rfrwpsy7uhxrgbypvwf5fad.onion

  • OnionLand search engine (gives very good results): 3bbad7fauom4d6sgppalyqddsqbf5u5p56b5k5uk2zxsy3d6ey2jobad.onion

Tools to Scan Onion Links 🔍

  • Onionscan - GitHub: github.com/s-rah/onionscan

  • Onioff - GitHub: github.com/k4m4/onioff

  • Onion-nmap - GitHub: github.com/milesrichardson/docker-onion-nmap

Tools to Crawl Data from the Dark Web 🕷️

  • TorBot - GitHub: github.com/DedSecInside/TorBot

  • TorCrawl - GitHub: github.com/MikeMeliz/TorCrawl.py

  • VigilantOnion - GitHub: github.com/andreyglauzer/VigilantOnion

  • OnionIngestor - GitHub: github.com/danieleperera/OnionIngestor

  • Darc - GitHub: github.com/JarryShaw/darc

  • Midnight Sea - GitHub: github.com/RicYaben/midnight_sea

  • Prying Deep - GitHub: github.com/iudicium/pryingdeep

OSINT IG:

OSINT Inception:

OSINT NCSO:

OSINT Tools:

Bellingcat’s OSINT:

AaronCTI's OSINT Resource Collection:

Set it on child -OSINT for Finding People:

OSINT Stuff Tools:

OSINT Combine Tools:

Cylect.io:

OSINT Dojo:

OSINT Tools:

Oh Shint Its a Blog:

https://osintframework.com/
https://www.exploit-db.com/google-hacking-database
https://www.shodan.io/
https://github.com/TebbaaX/Katana
https://dev-angelist.gitbook.io/ine-elearning-ejptv2-notes/readme/assessment-methodologies-and-auditing/1.1-information-gathering
https://dev-angelist.gitbook.io/practical-ethical-hacker-ceh-tools/practical-ethical-hacker-notes/main-contents/2-footprinting-and-recon
https://garrettmickley.com/sockpuppet-account-creation/
https://web.archive.org/web/20210125191016/https://jakecreps.com/2018/11/02/sock-puppets/
https://github.com/fastfire/deepdarkCTI/tree/main
https://osintframework.com/
https://github.com/megadose/OnionSearch
https://github.com/josh0xA/darkdump
https://ahmia.fi
https://github.com/Lucksi/Darkus
https://start.me/p/wMxOjN/osint
https://start.me/p/Pwy0X4/osint-inception
https://start.me/p/BnrMKd/01-ncso
https://www.osinttechniques.com/osint-tools.html
https://bellingcat.gitbook.io/toolkit
https://docs.google.com/spreadsheets/d/1klugQqw6POlBtuzon8S0b18-gpsDwX-5OYRrB7TyNEw/edit?gid=0#gid=0
https://docs.google.com/spreadsheets/d/1JxBbMt4JvGr--G0Pkl3jP9VDTBunR2uD3_faZXDvhxc/edit?gid=603724104#gid=603724104
https://github.com/cipher387/osint_stuff_tool_collection
https://www.osintcombine.com/tools
https://cylect.io/
https://www.osintdojo.com/resources/
https://www.aware-online.com/en/osint-tools/
https://ohshint.gitbook.io/oh-shint-its-a-blog