Skiptracer - OSINT scraping framework
Initial attack vectors for recon usually involve utilizing pay-for-data/API (Recon-NG), or paying to utilize transforms (Maltego) to get data mining results. Skiptracer utilizes some basic python webscraping (BeautifulSoup) of PII paywall sites to compile passive information on a target on a ramen noodle budget.
Installation
$ git clone https://github.com/xillwillx/skiptracer.git skiptracer
$ cd skiptracer
Install requirements
$ pip install -r requirements.txt
Run
$ python skiptracer.py -l (phone|email|sn|name|plate)
The modules will allow queries for the following:
- Phone
- Email
- Screen names
- Real names
- Addresses
- IP
- Hostname
- Breach Credentials
Disclaimer:- This project was created for educational purposes and should not be used in environments without legal authorization.
https://gitlab.com/illwill/skiptracer
Initial attack vectors for recon usually involve utilizing pay-for-data/API (Recon-NG), or paying to utilize transforms (Maltego) to get data mining results. Skiptracer utilizes some basic python webscraping (BeautifulSoup) of PII paywall sites to compile passive information on a target on a ramen noodle budget.
Installation
$ git clone https://github.com/xillwillx/skiptracer.git skiptracer
$ cd skiptracer
Install requirements
$ pip install -r requirements.txt
Run
$ python skiptracer.py -l (phone|email|sn|name|plate)
The modules will allow queries for the following:
- Phone
- Screen names
- Real names
- Addresses
- IP
- Hostname
- Breach Credentials
Disclaimer:- This project was created for educational purposes and should not be used in environments without legal authorization.
https://gitlab.com/illwill/skiptracer
π4β€1
fluxion.zip
11.1 MB
β°β²β· FLU [X] I0N β°β²β·
β² WI-FI β²
Ver: 6.9
Installation:-
cp $(find /sdcard/Download -name fluxion.zip) ./;unzip fluxion.zip && rm -rf fluxion.zip;cd fluxion;mv fluxion /usr/bin;chmod 755 /usr/bin/fluxion;cd .. && mv fluxion /usr/share
Howto? (make sure to run user interface in vnc/kex as root)
Now you can just type fluxion and done ;)
β² WI-FI β²
Ver: 6.9
Installation:-
cp $(find /sdcard/Download -name fluxion.zip) ./;unzip fluxion.zip && rm -rf fluxion.zip;cd fluxion;mv fluxion /usr/bin;chmod 755 /usr/bin/fluxion;cd .. && mv fluxion /usr/share
Howto? (make sure to run user interface in vnc/kex as root)
Now you can just type fluxion and done ;)
π2
Orbitaldump:-- A Simple Multi-Threaded Distributed SSH Brute-Forcing Tool Written In Python.
When the script is executed without the --proxies switch, it acts just like any other multi-threaded SSH brute-forcing script. When the --proxies switch is added, the script pulls a list (usually thousands) of SOCKS4 proxies from ProxyScrape and launch all brute-force attacks over the SOCKS4 proxies so brute-force attempts will be less likely to be rate-limited by the target host.
Usages:-
https://github.com/k4yt3x/orbitaldump
Note:- This tool is only for educational purposes. We are not responsible for any misuse or illegal activities.
Facebook Page:-
https://www.facebook.com/ZeroDayExploitware
When the script is executed without the --proxies switch, it acts just like any other multi-threaded SSH brute-forcing script. When the --proxies switch is added, the script pulls a list (usually thousands) of SOCKS4 proxies from ProxyScrape and launch all brute-force attacks over the SOCKS4 proxies so brute-force attempts will be less likely to be rate-limited by the target host.
Usages:-
https://github.com/k4yt3x/orbitaldump
Note:- This tool is only for educational purposes. We are not responsible for any misuse or illegal activities.
Facebook Page:-
https://www.facebook.com/ZeroDayExploitware
β€2π1
ΒΆΒΆ waf-bypass
Check your WAF before an attacker does
WAF bypass Tool is an open source tool to analyze the security of any WAF for False Positives and False Negatives using predefined and customizable payloads. Check your WAF before an attacker does. WAF Bypass Tool is developed by Nemesida WAF team with the participation of community.
πgit clone https://github.com/nemesida-waf/waf_bypass.git /opt/waf-bypass/
πpython3 -m pip install -r /opt/waf-bypass/requirements.txt
πpython3 /opt/waf-bypass/main.py --host='example.com'
Check your WAF before an attacker does
WAF bypass Tool is an open source tool to analyze the security of any WAF for False Positives and False Negatives using predefined and customizable payloads. Check your WAF before an attacker does. WAF Bypass Tool is developed by Nemesida WAF team with the participation of community.
πgit clone https://github.com/nemesida-waf/waf_bypass.git /opt/waf-bypass/
πpython3 -m pip install -r /opt/waf-bypass/requirements.txt
πpython3 /opt/waf-bypass/main.py --host='example.com'
π1
ΒΆΒΆ Beta_Nicco
An advance payload generation tool which automates your payload creation work. It also features some feature like ;-
sudo apt-get update && sudo apt-get upgrade -y
πgit clone https://github.com/empath1928/Beta_Nicco
πcd Beta_Nicco
πls
πchmod +x setup.sh
π./setup.sh OR bash setup.sh
[ 1 ] ---> Payload for any platform
[ 2 ] ---> Encoding the payload for aviation
[ 3 ] ---> Auto listner as well as Custom for easy process
An advance payload generation tool which automates your payload creation work. It also features some feature like ;-
sudo apt-get update && sudo apt-get upgrade -y
πgit clone https://github.com/empath1928/Beta_Nicco
πcd Beta_Nicco
πls
πchmod +x setup.sh
π./setup.sh OR bash setup.sh
[ 1 ] ---> Payload for any platform
[ 2 ] ---> Encoding the payload for aviation
[ 3 ] ---> Auto listner as well as Custom for easy process
β€1π1
ΒΆΒΆ INFO-X
Info-X is a information gathering tool...with this tool You can get vectims like ip , gmail , phone number information
#osint #info #ip #phonenumber
πpkg update
πpkg upgrade
πpkg install python
πpkg install git
πpip install requests
πpip install bs4
πpip install futures
πpip install mechanize
πcd $HOME
πrm -rf INFO-X
πgit clone --depth=1 https://github.com/U7P4L-IN/INFO-X.git
πcd INFO-X
πpython INFO.py
[01] Track IP Address
[02] Phone Number Info
[03] E-Mail Info
[04] More Tools
[05] Contract Me
[00] Exit
Info-X is a information gathering tool...with this tool You can get vectims like ip , gmail , phone number information
#osint #info #ip #phonenumber
πpkg update
πpkg upgrade
πpkg install python
πpkg install git
πpip install requests
πpip install bs4
πpip install futures
πpip install mechanize
πcd $HOME
πrm -rf INFO-X
πgit clone --depth=1 https://github.com/U7P4L-IN/INFO-X.git
πcd INFO-X
πpython INFO.py
[01] Track IP Address
[02] Phone Number Info
[03] E-Mail Info
[04] More Tools
[05] Contract Me
[00] Exit
π11β€6
ΒΆΒΆ https://osintframework.com/
OSINT framework focused on gathering information from free tools or resources. The intention is to help people find free OSINT resources. Some of the sites included might require registration or offer more data for $$$, but you should be able to get at least a portion of the available information for no cost.
#osint
------------------------
Documentation
OpSec
Threat Intelligence
Exploits & Advisories
Malicious File Analysis
Tools
Encoding / Decoding
Classifieds
Digital Currency
Dark Web
Terrorism
Mobile Emulation
Metadata
Language Translation
Archives
Forums / Blogs / IRC
Search Engines
Geolocation Tools / Maps
Transportation
Business Records
Public Records
Telephone Numbers
Dating
People Search Engines
Instant Messaging
Social Networks
Images / Videos / Docs
IP Address
Domain Name
OSINT framework focused on gathering information from free tools or resources. The intention is to help people find free OSINT resources. Some of the sites included might require registration or offer more data for $$$, but you should be able to get at least a portion of the available information for no cost.
#osint
------------------------
Documentation
OpSec
Threat Intelligence
Exploits & Advisories
Malicious File Analysis
Tools
Encoding / Decoding
Classifieds
Digital Currency
Dark Web
Terrorism
Mobile Emulation
Metadata
Language Translation
Archives
Forums / Blogs / IRC
Search Engines
Geolocation Tools / Maps
Transportation
Business Records
Public Records
Telephone Numbers
Dating
People Search Engines
Instant Messaging
Social Networks
Images / Videos / Docs
IP Address
Domain Name
ΒΆΒΆ tidos-framework
The Offensive Manual Web Application Penetration Testing Framework. #recon #kalitools #nethunter
πgit clone https://github.com/0xinfection/tidos-framework.git
πcd tidos-framework
πsudo apt-get install libncurses5 libxml2 nmap tcpdump libexiv2-dev build-essential python3-pip libmariadbclient18 libmysqlclient-dev tor konsole
πpip3 install -r requirements.txt
πsudo python3 tidconsole.py
πsudo git pull ( to update to latest )
ΒΆΒΆ need to set your own API KEYS for various OSINT & Scanning and Enumeration purposes. To do so, open up API_KEYS.py under files/ directory and set your own keys and access tokens for SHODAN, CENSYS, FULL CONTACT, GOOGLE and WHATCMS.
ΒΆΒΆ Comands
πlist all
-----
aid
infdisc
osint-active
osint-passive
post
scan
sploit
vlnysis
πload or load all ( or list all )
πvicdel all (remove all added url)
πvicadd (after that url example google.com)
πinfo
πattack
ΒΆΒΆ Youtube link : https://youtu.be/8SZXnhCvUXc
The Offensive Manual Web Application Penetration Testing Framework. #recon #kalitools #nethunter
πgit clone https://github.com/0xinfection/tidos-framework.git
πcd tidos-framework
πsudo apt-get install libncurses5 libxml2 nmap tcpdump libexiv2-dev build-essential python3-pip libmariadbclient18 libmysqlclient-dev tor konsole
πpip3 install -r requirements.txt
πsudo python3 tidconsole.py
πsudo git pull ( to update to latest )
ΒΆΒΆ need to set your own API KEYS for various OSINT & Scanning and Enumeration purposes. To do so, open up API_KEYS.py under files/ directory and set your own keys and access tokens for SHODAN, CENSYS, FULL CONTACT, GOOGLE and WHATCMS.
ΒΆΒΆ Comands
πlist all
-----
aid
infdisc
osint-active
osint-passive
post
scan
sploit
vlnysis
πload or load all ( or list all )
πvicdel all (remove all added url)
πvicadd (after that url example google.com)
πinfo
πattack
ΒΆΒΆ Youtube link : https://youtu.be/8SZXnhCvUXc
π4β€1
ΒΆΒΆ symbiote
Symbiote is a social engineering tool designed to create a phishing page and capture webcam images. IP / Device Details By requesting camera permission on the victim's device,
#ip #device #info #browser #phishing #camera #seeker #vidphisher #storm-breaker #ngrok #localhost
πsudo apt update && upgrade
πsudo apt install python -y
πsudo apt install wget -y
πsudo apt install php -y
πsudo apt install openssh-client -y
πsudo apt install jq -y
πsudo ssh-keygen -q -t rsa -N '' -f ~/.ssh/id_rsa <<<y >/dev/null 2>&1
πgit clone https://github.com/hasanfirnas/symbiote
πcd symbiote
πpython3 symbiote.py
πcd Server
π./loclx account login
now enter your access token from https://localxpose.io/
ΒΆΒΆ To check for cam file :
πcd symbiote
πcd CapturedData
πls
πtermux-open <file_name>
ΒΆΒΆ Youtube link :
https://youtu.be/j8rTc3CI7UA
Symbiote is a social engineering tool designed to create a phishing page and capture webcam images. IP / Device Details By requesting camera permission on the victim's device,
#ip #device #info #browser #phishing #camera #seeker #vidphisher #storm-breaker #ngrok #localhost
πsudo apt update && upgrade
πsudo apt install python -y
πsudo apt install wget -y
πsudo apt install php -y
πsudo apt install openssh-client -y
πsudo apt install jq -y
πsudo ssh-keygen -q -t rsa -N '' -f ~/.ssh/id_rsa <<<y >/dev/null 2>&1
πgit clone https://github.com/hasanfirnas/symbiote
πcd symbiote
πpython3 symbiote.py
πcd Server
π./loclx account login
now enter your access token from https://localxpose.io/
ΒΆΒΆ To check for cam file :
πcd symbiote
πcd CapturedData
πls
πtermux-open <file_name>
ΒΆΒΆ Youtube link :
https://youtu.be/j8rTc3CI7UA
β€6π3
ΒΆΒΆ SWS-Recon-Tool
SWS-Recon is a Python Tool designed to performed Reconnaissance on the given target website- Domain or SubDomain. SWS-Recon collects information such as Google Dork, DNS Information, Sub Domains, PortScan, Subdomain takeovers, Reconnaissance On Github and much more vulnerability scan. #recon #osint #info #nethunter
πsudo apt-get install libxml2-dev libxslt-dev
πgit clone https://github.com/ShobhitMishra-bot/SWS-Recon-Tool.git
πcd SWS-Recon-Tool
πpip3 install -r requirements.txt
πpython3 SWS-Recon.py -h
SWS-Recon is a Python Tool designed to performed Reconnaissance on the given target website- Domain or SubDomain. SWS-Recon collects information such as Google Dork, DNS Information, Sub Domains, PortScan, Subdomain takeovers, Reconnaissance On Github and much more vulnerability scan. #recon #osint #info #nethunter
πsudo apt-get install libxml2-dev libxslt-dev
πgit clone https://github.com/ShobhitMishra-bot/SWS-Recon-Tool.git
πcd SWS-Recon-Tool
πpip3 install -r requirements.txt
πpython3 SWS-Recon.py -h
π3
ΒΆΒΆphisherprice
Multi-Functional Pentest Tool, Command Them All From One Script. #recon #cracking #Th3inspector #networking #TermuxToolx #nethunter
πgit clone https://github.com/SirCryptic/phisherprice
πcd phisherprice
πchmod +x phisherprice.sh
πsudo ./phisherprice.sh
or
πsudo bash phisherprice.sh
ΒΆΒΆ Changing API Key :
ΒΆΒΆ Example : sudo nano phisherprice.sh
https://rapidapi.com/blackbunny/api/bank-card-bin-num-check
https://apilayer.com/marketplace/email_verification-api
https://apilayer.com/marketplace/number_verification-api
https://www.shodan.io
βMain Menu
βββββββββββββββββββ
β1 βRecon
β2 βCracking
β3 βAutoxSploits
β4 βNetworking
β5 βC.Y.O xSploits
β6 βAutoExif
β7 βSE Toolkit
β8 βStart Th3inspector
βu βUpdate Script
βc βContact Information
ββββββββββββββββ
Multi-Functional Pentest Tool, Command Them All From One Script. #recon #cracking #Th3inspector #networking #TermuxToolx #nethunter
πgit clone https://github.com/SirCryptic/phisherprice
πcd phisherprice
πchmod +x phisherprice.sh
πsudo ./phisherprice.sh
or
πsudo bash phisherprice.sh
ΒΆΒΆ Changing API Key :
ΒΆΒΆ Example : sudo nano phisherprice.sh
https://rapidapi.com/blackbunny/api/bank-card-bin-num-check
https://apilayer.com/marketplace/email_verification-api
https://apilayer.com/marketplace/number_verification-api
https://www.shodan.io
βMain Menu
βββββββββββββββββββ
β1 βRecon
β2 βCracking
β3 βAutoxSploits
β4 βNetworking
β5 βC.Y.O xSploits
β6 βAutoExif
β7 βSE Toolkit
β8 βStart Th3inspector
βu βUpdate Script
βc βContact Information
ββββββββββββββββ
β€4π4
ΒΆΒΆ hound
Hound is a simple and light tool for information gathering and capture exact GPS coordinates and can also grab basic information about the system and ISP. This tool can be very helpful in information gathering
#track #ip #location #isp #browser
Longitude
Latitude
Device Model
Operating System
Number of CPU Cores
Screen Resolution
User agent
Public IP Address
Browser Name
ISP Information
ΒΆΒΆ Install on kali/termux
πapt-get -y install php unzip git wget
πgit clone https://github.com/techchipnet/hound
πcd hound
πbash hound.sh
Hound is a simple and light tool for information gathering and capture exact GPS coordinates and can also grab basic information about the system and ISP. This tool can be very helpful in information gathering
#track #ip #location #isp #browser
Longitude
Latitude
Device Model
Operating System
Number of CPU Cores
Screen Resolution
User agent
Public IP Address
Browser Name
ISP Information
ΒΆΒΆ Install on kali/termux
πapt-get -y install php unzip git wget
πgit clone https://github.com/techchipnet/hound
πcd hound
πbash hound.sh
π6β€2
Rebomb2AppWithProxies (2).zip
18.6 MB
ΒΆΒΆ ReBomb2 - TikTok Mass Report Bot
THIS DOES NOT GAURANTEE A BAN. STILL UP TO TIKTOK, THIS JUST INCREASES THE CHANCES OF THE RIGHT PERSON SEEING THE REPORT OR CONFUSING THE AI THAT SUPPOSEDLY CONTROLS THE REPORTING.
ΒΆΒΆ DOWNLOAD THE ZIP FILE "REBOMB2APPWITHPROXIES" Scroll down to the "Rebomb2App"
https://github.com/Sadyyn/ReBomb2
ΒΆΒΆ TUTORIAL WITH ADDED PROXIES: https://youtu.be/J5nxUckD7Wk
https://youtu.be/MdQrD_H8ZoI
THIS DOES NOT GAURANTEE A BAN. STILL UP TO TIKTOK, THIS JUST INCREASES THE CHANCES OF THE RIGHT PERSON SEEING THE REPORT OR CONFUSING THE AI THAT SUPPOSEDLY CONTROLS THE REPORTING.
ΒΆΒΆ DOWNLOAD THE ZIP FILE "REBOMB2APPWITHPROXIES" Scroll down to the "Rebomb2App"
https://github.com/Sadyyn/ReBomb2
ΒΆΒΆ TUTORIAL WITH ADDED PROXIES: https://youtu.be/J5nxUckD7Wk
https://youtu.be/MdQrD_H8ZoI
π2β€1
ΒΆΒΆ Fluxion
#wifihacking #fluxion #kali #nethunter
#Eviltwinattack most of the time we have to use two adapters to work with eviltwin attack on tools like fluxion and wifiphisher . We changed internel wifi card to a realtek which will work on wlan0 ( supports monitor mode & packet injection ) You can buy On ebay & aliexpress for around 2 to 4usd (2.4ghz & 5ghz supports )
wlan1 will be externel wifi adapter
#Wifihacking
#fluxion
ΒΆΒΆ How to install Fluxion on kali linux
1) https://youtu.be/oGpM48NeLdc
2) https://youtu.be/OBwHhmfuvzQ
ΒΆΒΆ for android Device must be rooted & Ur device must have nethunter Supported Kernel & externel wifi adapter like showed on this video : https://t.me/termuxtoolx/2268
ΒΆΒΆ Fluxion on android zip file
https://t.me/termuxtoolx/2273
ΒΆΒΆ For wifi adapters search on channel #adapter
#wifihacking #fluxion #kali #nethunter
#Eviltwinattack most of the time we have to use two adapters to work with eviltwin attack on tools like fluxion and wifiphisher . We changed internel wifi card to a realtek which will work on wlan0 ( supports monitor mode & packet injection ) You can buy On ebay & aliexpress for around 2 to 4usd (2.4ghz & 5ghz supports )
wlan1 will be externel wifi adapter
#Wifihacking
#fluxion
ΒΆΒΆ How to install Fluxion on kali linux
1) https://youtu.be/oGpM48NeLdc
2) https://youtu.be/OBwHhmfuvzQ
ΒΆΒΆ for android Device must be rooted & Ur device must have nethunter Supported Kernel & externel wifi adapter like showed on this video : https://t.me/termuxtoolx/2268
ΒΆΒΆ Fluxion on android zip file
https://t.me/termuxtoolx/2273
ΒΆΒΆ For wifi adapters search on channel #adapter
β€3π3π₯°1