Subfinder
Sublist3r
OWASP Amass
sn0int
SpiderFoot
Shodan
Visallo
theHarvester OSINT Tool
Social-Engineer Toolkit
Cobalt Strike
Exploit Pack
Armitage
ZoomEye
Immunity CANVAS
Core Impact Pro
Rapid7
SubfinderSocial-Engineer Toolkit might be a bit more popular than Subfinder. We know about 2 links to it since March 2021 and only 2 links to Subfinder. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
https://github.com/projectdiscovery/subfinder does this, but it explains all the methods and lets you choose to only do a passive scan. - Source: Hacker News / 10 months ago
My main source is Certificate Transparency, which is kind of a database of TLS certs created so far. But use external tools like Subfinder or Amass. Source: over 1 year ago
There's programs out there to make these malicious PDFs, word documents, etc https://github.com/trustedsec/social-engineer-toolkit. Source: about 1 year ago
Social Engineer Toolkit (SET) - Open source pentesting framework designed for social engineering featuring a number of custom attack vectors to make believable attacks quickly. - Source: dev.to / over 2 years ago
Sublist3r - Sublist3r is a python tool designed to enumerate subdomains of websites using OSINT.
Cobalt Strike - Advanced threat tactics for penetration testers.
OWASP Amass - An advanced open source tool to help information security professionals perform network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques!
Exploit Pack - Exploit Pack is an open source project security that will help you adapt exploit codes on-the-fly.
sn0int - sn0int is a semi-automatic OSINT framework and package manager
Armitage - Armitage makes penetration testing easy by adding a GUI to the Metasploit framework
