Contains a list of OSINT tools, OSINT tips, datasets, Maltego transform and others. There are free and paid tools you can use and owner is not responsible (take your own risks), only for knowledge or educational purposes. Apologies if some of the resources are no longer available or contain errors, as the owner does not regularly check the status of these resources, thank you.
- Use virtual machine, fake host or docker machine
- Use private network e.g vpn, tor, p2p
- Use second account (not you real account)
- Read ToS the resouces
- Enable your firewall, AV and IDS on your host or machine
- Strict your browser with the privacy extension disable js, ads and more
- Dont upload your private files make sure you have clean personal file in folder
- Scan the files will you download
- Encrypt your network traffic, message and disk
- IT Security
- CTF Player
- Journalist
- Investigator
- Cyber Crime
- Researcher & Annalist
- Law Enforcer
- General
You can build it with VM or Live USB make sure you have sandbox machine
Artist string
Author string
Caption string
Categories string
Collections string
DateTime date
DPP lang-alt
EditStatus string
FixtureIdentifier string
Keywords string
Notes string
ObjectCycle string
OriginatingProgram string
Rating real
Rawrppused boolean
ReleaseDate string
ReleaseTime string
RPP lang-alt
Snapshots string
Tagged boolean
More : man exiftool (Run on your terminal)
Site :
- exiftool -tagname="string" file
example : exiftool -Author="Bayu" test.txt
you can add multiple tag and multiple file
- exiftool -tagname="" file
example : exiftool -Author="" test.txt
- exiftool -all="" file
example : exiftool -all="" file
#Usage : man exiftool or read documentation exiftool.org
Not there are tag no writetable, make sure tagname can write
Automated tool by David Bombal
Use fresh file, if your file has been compressed or edit metadata you got a default metadata You can use xmp format for edit, write and delete metadata Check the documentation
- Instagram Be carefull using this tool
- Tinfoleak
- SOCMINT tool
- Graph Search
- Alfred
- Blackbird
- sociallinks
- spokeo
- maigret
- social searcher
- seon
- inteltechniques
- SNSSCRAPE
- dreddown - social media downloader
- knowlesys
- Kaggle
- RAPID API Collection
- Exploit Database
- AWS open data
- Open Network
- WHO Data
- Gpt OSINT
- Humdata
- datasetsearch
- OSINT Collection
- Academic Torrent
- Torrent API
- API OSINT TORRENT
- Microsoft Building Fingerprints
- MAXAR Satellite imagery
- Satellite Collection
- Open measure
- Fiugis
- Earth ESA
- Google Public Data
- paperswithcode
- ID BPS
- ID data Kementrian & Lembaha Dataset
- ShadowDragon
- datasetlist
- roboflow
- databoks katadata ID
- Google Engine Dataset
- All world geojson data
- statista
- World Bank Open Data
- iceye sat dataset
Site and forums OSINT community arround world
- Bellingcat Discord
- Independent OSINT
- OSINT.Team
- Seccodeid Forum
- Reddit OSINT
- TraceLabs Discord
- IntelTechniques
- Google Group
- 4Chan
- boardreader
- maltego
- offensiveosint
- sizeof
- onniforums
- intelligencewithsteve
- SANS
- cybdetective
- secjuice
- sector35
- ohshint
- osintcombine
- osintteam
- KASE OSINT Scenario
- Sophia Santos
- goosint
- Chromium Code Search
- Code Finder
- codefinder org
- Android Code Search
- CodeSeek
- Debian Code Search
- Scala
- SearchCode
- SourceCodeOnline
- Woboq
- publicwww
- DevsecOps Secure Code
- awesomeopensource
- nerdydata
- Github code search
- sourcegraph
- cybdetective code search
- Archie
- 4shared
- FileSearching
- File chef
- Global File Search
- Search Shared
- MMNT
- Pdf analyzer
- Tools pdf24
- Awario
- Brand24
- Samdesk
- Maltego social links
- Maltego Social Links Pro
- Social Searcher
- Social Analyzer
- SNSCRAPE - Scraper
- OSINT compass
- Phantom Buster
- Open measure
- huntintel
- Sherlock Eye
- clauneck
- ShadowDragon
- sociallinks
- Crimewall
- socialscan
- META crowdtangle
- drone emprit
- brandmentions
- Buffer
- Coosto
- Revive Social
- Social Analyzer
- Gpt OSINT
- SNSCRAPE - Scraper
- Phantom Buster
- huntintel
- Sherlock Eye
- clauneck
- ShadowDragon
- sociallinks
- Crimewall
- socialscan
- socialcatfish
Hastag and keyword analysis in search engine, social media or other platform
- brandmentions
- wordtracker
- keywordtool
- tweetbinder
- onemilliontweetmap
- trackmyhashtag
- Tweet Deck
- droneemprit
- Google Trends
- Google keyword planner
- keyworddiscovery
- Yandex Trends
- orangedatamining
- twtdata
- Better Whois
- whoishistory
- DNS History
- DNS Spy
- DNS Checker
- HackerTarget
- RedHunt Labs Attack Surface Recon API
- Shodan
- Wappalyzer
- Sudomy
- Testssl
- Nmap
- builtwith
- VirusTotal
- Nessus
- Nikto
- Webshag
- wayback machine
- Whoxy
- Farsight DNSDB Transforms for Maltego
- Web Screnshhot Maltego Transforms
- Nuclei
- Netcraft
- DNSX
- cachedview
- Zoomeye
- securitytrails
- hakrawler
- Dork Lab
- Websecreenshoot
- Leakos
- Pastos
- SNYK
- Similar Sites
- Similar Web
- spyonweb
- analyzeid
- Zeus-Scanner
- CloudFail
- Real IP Discover
- Mend Io
- whois request
- completedns
- dnsdumper
- A href Backlink Checker
- Neil Patel Backlink
- Semrush Backlink
- Small SEO Tool Backlink
- SEO Backlink Check
- Moz Backlink
- SPAM Check Score
- MOZ Spam Check
- WEB Check
- brightcloud ip lookup
- Url Filltering
- Katana
- chiasmod0n
- redirectdetective
- wheregoes
- spyoffers
- Web Leaked Credentials
- host tracker
- crt.sh
- merklemap.com
- view DNS
- visualping
- jam dev browser extension
- Whoxy Whois History
- whoisfreaks Whois History
- domaintools Whois History
- whoisxmlapi Whois History
- fofa
- nerdydata
- urlquery
- transparencyreport Google
- stat ripe
- favicon-hash
- FavFreak
- LeakIX
- vstat
- Unfurl
- VirusTotal
- Archive Org
- Iplocation
- Smallseotools
- Abuse IP
- Check-The-Sum
- Check Phish
- Radar By Cloudflare
- Is it Phishing
- Kaspersky
- PolySwarm
- Threat Miner
- Netcraft
- Malwareworld
- DNS TWIST
- URL CRAZY - Phishing detector
- CRT - Find cert ssl and etc
- Phishing catcher
- Open Phish
- Phishtalk
- URL Haus
- Expand Url
- Tiny Scan
- redirectdetective
- wheregoes
- spyoffers
- vx-underground
- ShadowDragon
- metadefender
- fofa
- safeweb norton
- haveibeensquatted
- Apility.io
- Alien Vault
- AutoShun
- Blacklist Check Tool
- Censys
- CVE Details
- IBM X-Force Exchange
- JoeSandbox Cloud
- Is It Hacked?
- Is It Phishing
- Kaspersky Threat
- Malware Domain List
- Malware URL Website
- Quttera
- Virus total
- Virus Share
- Web Cookies Scanner
- Yara
- Yara Hub
- Spiderfoot
- NVD
- Seclist
- CVE Mitre
- Malicious Check
- Email Header Analysis
- Email-Analytics
- Email Header Analisis Toolbox
- Url Scan
- AnyRun
- Hybrid Analysis
- VMRay Sandbox
- Browser Sandbox
- Fillter Bypass
- Abuse IP DB
- Check-The-Sum
- Talos CTI
- Phishing Analysis Tool
- Phish Verification System
- PolySwarm
- ThreatCrowd
- HYAS Insight
- Phishstats
- GitGuardian
- Rescure
- PolySwarm
- Darkfeed
- Header Email
- Badan Pemeriksa APK
- SPAMHAUS
- Spiderfoot HX You must have account
- Flare
- Malwareworld
- DNS TWIST
- URL CRAZY - Phishing detector
- CRT - Find cert ssl and etc
- Phishing catcher
- Blackite
- Open Phish
- Phish Talk
- Threat Feeds
- Threat Miner
- Intel OWL
- RiskIQ
- LOKI
- Mandiant
- Mend Io
- TRIAGE
- EML Analyzer
- Cyber Chef
- Expand Url
- Wanna Browser Sandbox
- pestudio
- procmon
- C2-Tracker
- malpedia
- vx-underground
- shellpub
- qianxin
- CAPA MANDIANT
- ShadowDragon
- decompiler
- deepdarkCTI
- metadefender
- CTX
- SNYK
- Github advisoreis
- Openwall
- Falcon Feeds
- filescan
- urlquery
- transparencyreport google
- trustpositif Kominfo ID
- Malware Bazaar
- tria
- safeweb norton
- threatbook
- pulsedive
- cuckoo
- LeakIX
- Binary Edge
- Shodan
- Shodan Filters
- Shodan Scripts
- Kamerka
- airportwebcams
- Earthcam
- tvway
- Cameraftp
- Insecam
- Webcams
- Molecool CCTV and Nearby
- Calculator IPVM
- webcamtaxi
- weatherbug
- CCTV location tracking
- Rusia pub CCTV
- lIVE CAM beach Australia
- webcamcse cipher387
- Whats my ip This tools can show your ip address isp provider
- Ip 2 location This tools can show your ip address isp provider and geo location
- unwiredlabs Dataset about IP around world
- Wigle Maps and database of 802.11 wireless networks, with statistics, submitted by wardrivers, netstumblers, and net huggers
- Fing Net Scan
- Wifianalyzer
- Signalmonitoring
- Angry Ip
- Advanced ip scanner
- Wifimap
- Fon
- SolarWInds
- wifispc
- wificafespots
- openwifimap
- unwiredlabs
- cellphonetrackers wifi tracker
- mylnikov BSSID Public API
- wifidb
- combain
- freifunk
- GONZOsint- geowifi
- bgp
Tips
You can find the file hash or other threat indicator
- Alien Vault
- Exploit db
- AT&T
- Yara
- Yara Hub
- Virustotal
- Joesandbox
- Spiderfoot
- Open CTI
- Solarwinds
- VMware Carbon Black Endpoint
- Insightidr
- MISP
- NVD
- Seclist
- CVE Mitre
- Whois Record
- Abuse IP DB
- Check-The-Sum
- Talos CTI
- Darkfeed
- Flare
- Mihari
- Processhacker
- Koodous
- Blackite
- Open Phish
- Phish Talk
- Sophos
- Signature Base
- SIEM Rules
- Threat Feed
- Threat Connect
- Threat Miner
- Virus Share
- Intel OWL
- RiskIQ
- TypeDB
- Goosint
- Google APT search
- LOKI
- Mandiant
- IoC Editor
- CREST Threat Intel
- Intel471
- flashpoint
- pestudio
- procmon
- zerofox
- malpedia
- vx-underground
- shellpub
- qianxin
- CAPA MANDIANT
- ShadowDragon
- sociallinks
- decompiler
- deepdarkCTI
- metadefender
- CTX
- Falcon Feeds
- NetAlertX
- filescan
- Malware Bazaar
- greynoise
- darktrace
- threatbook
- pulsedive
- cuckoo
- polyswarm
- recordedfuture
- Dorklab
- Ominis-Osint
- Go Dork
- Dorkish
- Dork Collection
- Fast Dork Scan
- Shodan Quries
- List Dork
- CENSYS Queries
- Google Dork Simplified
- Gdorks
- cybdetective pastebin
- NAMINT
- BullsEye0 dorks
- Advanced Search
- GitDorker
- gitdorks_go
- Github API (view owner repo and event etc)
- Github advisories DB
Dorking is a wonderful thing, you can use this technique to search for anything such as index of a website, looking for live online camera server and other specifics, as for dorking commands that you can do for example
- intitle: Search for specific titles
- inurl: Search for specific urls or paths
- intext: Search for specific words or contects
- filetype: Search for files
- site: Search from a specified target
- Wildcard or symbol * (star) Find all web pages, for example: seccodeid*
- Define:term Search for all things with specified terms, example define:seccodeid
- cache page Take a snapshot of an indexed page. Google uses this to find the right page for the query you're looking for. Website or target specifically
- allintext: Searches for specific text contained on a web page
- allinurl: Find various keywords in a URL
- allintitle: Restricts results to those containing all terms specified in a title
- link: List of web pages that have links to the specified URL
- (|) Pipe. This is a logical operator, | "tips" will show all the sites which contain either, or both words
- (+) Used to concatenate words, useful to detect pages that use more than one specific key
- (-) Minus operator avoids showing results that contain certain words, e.g. security -trails will show pages that use "security" in their text, but not those that have the word "trails"
Example
".mlab.com password"
"access_key"
"access_token"
"amazonaws"
"api.googlemaps AIza"
"api_key"
"api_secret"
"apidocs"
"apikey"
"apiSecret"
"app_key"
"app_secret"
"appkey"
"appkeysecret"
"application_key"
"appsecret"
"appspot"
"auth"
"auth_token"
"authorizationToken"
"aws_access"
"aws_access_key_id"
"aws_key"
"aws_secret"
"aws_token"
"AWSSecretKey"
"bashrc password"
"bucket_password"
"client_secret"
"cloudfront"
"codecov_token"
"config"
"conn.login"
"connectionstring"
"consumer_key"
"credentials"
"database_password"
"db_password"
"db_username"
"dbpasswd"
"dbpassword"
"dbuser"
"dot-files"
"dotfiles"
"encryption_key"
"fabricApiSecret"
"fb_secret"
"firebase"
"ftp"
"gh_token"
"github_key"
"github_token"
"gitlab"
"gmail_password"
"gmail_username"
"herokuapp"
"internal"
"irc_pass"
"JEKYLL_GITHUB_TOKEN"
"key"
"keyPassword"
"ldap_password"
"ldap_username"
"login"
"mailchimp"
"mailgun"
"master_key"
"mydotfiles"
"mysql"
"node_env"
"npmrc _auth"
"oauth_token"
"pass"
"passwd"
"password"
"passwords"
"pem private"
"preprod"
"private_key"
"prod"
"pwd"
"pwds"
"rds.amazonaws.com password"
"redis_password"
"root_password"
"secret"
"secret.password"
"secret_access_key"
"secret_key"
"secret_token"
"secrets"
"secure"
"security_credentials"
"send.keys"
"send_keys"
"sendkeys"
"SF_USERNAME salesforce"
"sf_username"
"site.com" FIREBASE_API_JSON=
"site.com" vim_settings.xml
"slack_api"
"slack_token"
"sql_password"
"ssh"
"ssh2_auth_password"
"sshpass"
"staging"
"stg"
"storePassword"
"stripe"
"swagger"
"testuser"
"token"
"x-api-key"
"xoxb "
"xoxp"
[WFClient] Password= extension:ica
access_key
bucket_password
dbpassword
dbuser
extension:avastlic "support.avast.com"
extension:bat
extension:cfg
extension:env
extension:exs
extension:ini
extension:json api.forecast.io
extension:json googleusercontent client_secret
extension:json mongolab.com
extension:pem
extension:pem private
extension:ppk
extension:ppk private
extension:properties
extension:sh
extension:sls
extension:sql
extension:sql mysql dump
extension:sql mysql dump password
extension:yaml mongolab.com
extension:zsh
filename:.bash_history
filename:.bash_history DOMAIN-NAME
filename:.bash_profile aws
filename:.bashrc mailchimp
filename:.bashrc password
filename:.cshrc
filename:.dockercfg auth
filename:.env DB_USERNAME NOT homestead
filename:.env MAIL_HOST=smtp.gmail.com
filename:.esmtprc password
filename:.ftpconfig
filename:.git-credentials
filename:.history
filename:.htpasswd
filename:.netrc password
filename:.npmrc _auth
filename:.pgpass
filename:.remote-sync.json
filename:.s3cfg
filename:.sh_history
filename:.tugboat NOT _tugboat
filename:_netrc password
filename:apikey
filename:bash
filename:bash_history
filename:bash_profile
filename:bashrc
filename:beanstalkd.yml
filename:CCCam.cfg
filename:composer.json
filename:config
filename:config irc_pass
filename:config.json auths
filename:config.php dbpasswd
filename:configuration.php JConfig password
filename:connections
filename:connections.xml
filename:constants
filename:credentials
filename:credentials aws_access_key_id
filename:cshrc
filename:database
filename:dbeaver-data-sources.xml
filename:deployment-config.json
filename:dhcpd.conf
filename:dockercfg
filename:environment
filename:express.conf
filename:express.conf path:.openshift
filename:filezilla.xml
filename:filezilla.xml Pass
filename:git-credentials
filename:gitconfig
filename:global
filename:history
filename:htpasswd
filename:hub oauth_token
filename:id_dsa
filename:id_rsa
filename:id_rsa or filename:id_dsa
filename:idea14.key
filename:known_hosts
filename:logins.json
filename:makefile
filename:master.key path:config
filename:netrc
filename:npmrc
filename:pass
filename:passwd path:etc
filename:pgpass
filename:prod.exs
filename:prod.exs NOT prod.secret.exs
filename:prod.secret.exs
filename:proftpdpasswd
filename:recentservers.xml
filename:recentservers.xml Pass
filename:robomongo.json
filename:s3cfg
filename:secrets.yml password
filename:server.cfg
filename:server.cfg rcon password
filename:settings
filename:settings.py SECRET_KEY
filename:sftp-config.json
filename:sftp-config.json password
filename:sftp.json path:.vscode
filename:shadow
filename:shadow path:etc
filename:spec
filename:sshd_config
filename:token
filename:tugboat
filename:ventrilo_srv.ini
filename:WebServers.xml
filename:wp-config
filename:wp-config.php
filename:zhrc
HEROKU_API_KEY language:json
HEROKU_API_KEY language:shell
HOMEBREW_GITHUB_API_TOKEN language:shell
jsforce extension:js conn.login
language:yaml -filename:travis
msg nickserv identify filename:config
org:Target "AWS_ACCESS_KEY_ID"
org:Target "list_aws_accounts"
org:Target "aws_access_key"
org:Target "aws_secret_key"
org:Target "bucket_name"
org:Target "S3_ACCESS_KEY_ID"
org:Target "S3_BUCKET"
org:Target "S3_ENDPOINT"
org:Target "S3_SECRET_ACCESS_KEY"
password
path:sites databases password
private -language:java
PT_TOKEN language:bash
redis_password
root_password
secret_access_key
SECRET_KEY_BASE=
shodan_api_key language:python
WORDPRESS_DB_PASSWORD=
xoxp OR xoxb OR xoxa
s3.yml
.exs
beanstalkd.yml
deploy.rake
.sls
AWS_SECRET_ACCESS_KEY
API KEY
API SECRET
API TOKEN
ROOT PASSWORD
ADMIN PASSWORD
GCP SECRET
AWS SECRET
"private" extension:pgp
intext:"hacking" site:seccodeid.com
inurl:login site:seccodeid.com
intext:username filetype:log
site:www.github.com ext:doc | ext:docx | ext:odt | ext:rtf | ext:sxw | ext:psw | ext:ppt | ext:pptx | ext:pps | ext:csv
PRO TIPS!
You can add other headers, regex and search engine endpoints for refinement and to encode queries
- BING SEARCH
WEB
for ((i=1;i<=10;i++));do curl -i -s -k -L -X GET -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0" "https://www.bing.com/search?pglt=2081&q=.php?id=" | grep -Eo 'href="[^\"]+"' | grep -Po "(http|https)://[a-zA-Z0-9./?=_%:-]*" | grep ".php?id" | sort -u ;done
Hunt Username
for ((i=1;1<=10;i++));do curl -i -s -k -L -X GET -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/119.0;Accept: */*;Accept-Language: id,en-US;q-0.7,en;q-0.3;Accept-Encoding: gzip, deflate, br;Referer: https: //www.bing.com/;DNT: 1;Connection: keep-alive;Cookie: 1P_JAR=2023-11-05-19;Sec-Fetch-Dest:empty;Sec-Fetch-Mode:cors;Sec-Fetch-Site: same-origin;TE: trailers" "https://www.bing.com/search?pglt=2081&q=Jieyab89" | grep -Eo 'href="[^\"]+"' | grep -Po "(http|https)://[a-zA-Z0-9./?=_%:-]*" | grep -E "Jieyab89|github" | sort -u ;done
Hunt Username
for ((i=1;1<=10;i++));do curl -i -s -k -L -X GET -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/119.0;Accept: */*;Accept-Language: id,en-US;q-0.7,en;q-0.3;Accept-Encoding: gzip, deflate, br;Referer: https: //www.bing.com/;DNT: 1;Connection: keep-alive;Cookie: 1P_JAR=2023-11-05-19;Sec-Fetch-Dest:empty;Sec-Fetch-Mode:cors;Sec-Fetch-Site: same-origin;TE: trailers" "Your Bing Request URL Header" | grep -Eo 'href="[^\"]+"' | grep -Po "(http|https)://[a-zA-Z0-9./?=_%:-]*" | grep -E "Jieyab89|github" | sort -u ;done
- GOOGLE SEARCH
Hunt Username
for ((i=1;1<=10;i++));do curl -i -s -k -L -X GET -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/119.0;Accept: */*;Accept-Language: id,en-US;q-0.7,en;q-0.3;Accept-Encoding: gzip, deflate, br;Referer: https: //www.google.com/;DNT: 1;Connection: keep-alive;Cookie: 1P_JAR=2023-11-05-19;Sec-Fetch-Dest:empty;Sec-Fetch-Mode:cors;Sec-Fetch-Site: same-origin;TE: trailers" "https://www.google.com/search?sourceid=chrome-psyapi2&ion=1&espv=2&ie=UTF-8&start=${i}0&q=Jieyab89" | grep -Eo 'href="[^\"]+"' | grep -Po "(http|https)://[a-zA-Z0-9./?=_%:-]*" | grep -E "Jieyab89|github" | sort -u ;done
WEB
for ((i=1;i<=10;i++));do curl -i -s -k -L -X GET -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:68.0) Gecko/20100101 Firefox/68.0" "https://www.google.com/search?sourceid=chrome-psyapi2&ion=1&espv=2&ie=UTF-8&start=${i}0&q=.php?id=" | grep -Eo 'href="[^\"]+"' | grep -Po "(http|https)://[a-zA-Z0-9./?=_%:-]*" | grep ".php?id" | sort -u ;done
- us.searchboth.net
- Archive.org
- Yandex
- Pastebin
- Topix.com
- search.carrot2.org/stable/search
- Shodan
- Piratebays
- Onesearch
- Searchencrypt
- Duckgo
- Waymore
- StartPage
- Searx
- CommonCrawl
- Similar Sites
- Zap Meta
- Carrot Search
- Goo Search
- swisscows
- odp
- Yiipy Search
- webarchiveviewer
- duckduckgo Bangs
- mediasova
- mojeek
- boardreader
- Geoint CSE search
- lolarchiver
- DMCA Lumen DB
- Wayback Machine
- Intelligence X
- Openlibrary
- Archive Fo
- UKWA
- Archive today
- Waymore
- Cached Pages
- cachedview
- ArchivEye
- Twitter Archive
- Archive Today
- Wayback Downloader
- How to archive tele content
- webarchiveviewer
- ShadowDragon
- lolarchiver
- Time Travel
- Dehashed
- Haveibeenpwned
- Intelligence X
- Wiki Leaks
- DDO Secrets
- Breached Availabe on Darkweb
- Stealthmole
- Doxbin
- Search0t
- Search0t MAP
- What Breach
- Breach Directory
- Snusbase
- Flare
- Leaklookup
- Pastos
- Blackkite
- Facebook Data Breach Cheker
- pwnedOrNot
- Intel471
- Maltego Transform ShadowDragon
- offshoreleaks
- proxynova password breach
- WhiteIntel
- Leaked Domain
- cybdetective pastebin
- emploleaks
- databreaches
- lolarchiver
- Leakcheck
- exposed
- oathnet
- sn0int pwndb-domains
- sn0int pwndb-emails
- SCI HUB This domain will always change, check the mirror Mirror
- Z-Library
- DOAJ (Directory of Open Access Journals)
- LibGen (Library Genesis)
- ScienceOpen
- CORE
- Unpaywall
- Wiley Online Library
- Open Access Button
- Libgen
- Ieee
- Sciencedirect
- Sinta
- Scopus
- Onesearch ID
- Z-Library
- DOAJ (Directory of Open Access Journals)
- LibGen (Library Genesis) 2
- ScienceOpen
- CORE
- Springer Support
- Springer link 2
- Academia.edu
- CyberLeninka
- Unpaywall
- ResearchGate
- Wiley Online Library
- Open Access Button
- Arjuna Kemdikbud ID
- Bima Kemdikbud ID
- Rama Kemdikbud ID
- Google scholar
- Publish or Perish
- mendeley
- Sciepub
- Anjani Kemdikbud ID Report person academic cheat
- Zotero
- ebsco
- gale
- hathitrust
- connectedpapers
- whois
- whois by hostinger
- Netcraft
- Hunter
- SignalHire
- Spiderfoot
- Spiderfoot HX You must have account
- Rocket Reach
- Glasdoor
- Indeed
- ZoomInfo
- Crunchbase
- Apolo
- Lusha
- Jobstreet
- BOTW
- opencorporates
- Data OCCRP
- OSINT Maps
- Tripadvisor
- Trustindex
- G Map Review
- Provenexpert
- SIMPU RI
- collegerecruiter
- corporationwiki
- Maltego social links
- indokontraktor ID
- opentender ID
- lpse lkpp ID
- ahu ID
- Minerba ESDM ID
- MODI ID
- Minerba ESDM ID Map
- HAKI ID
- Email Format
- opensanctions
- ALEPT OCCRP
- offshoreleaks
- gajiterbaru
- sociallinks
- Job Planet
- Deals Job
- Pay Scale
- salary
- Paylab Salary Info
- emploleaks
- UK Company Search
- Venture Radar
- tracxn
- clearbit
- Kemenperin ID
- IDX ID
- OJK ID
- lpse lkpp ID
- companieshouse ID
- Fintech ID
- Website informer
- contactout
- opensecrets
- spyfu
- google finance
- siteworthtraffic
- spokeo
- 123people
- peepdb
- reversegeni
- PDDIKTI
- IDEBKU OJK ID
- SINTA
- Social Searcher
- Pimeyes
- Rocketreach
- SignalHire
- Website informer
- Find and Update company
- Thatsthem
- Freepeoplesearch
- Predicta Search
- Epios
- anymailfinder
- getprospect
- ZoomInfo
- Apolo
- Family Tree
- Radaris
- beenverified
- bandcamp
- Sherlock Eye
- NIK PARSE
- Maltego Social Links Pro
- hertz
- fastpeoplesearch
- fastpeoplesearch.info
- intelius
- recruitin
- recruitmentgeek
- Arjuna Kemdikbud ID
- peekyou
- castrickclues
- lolarchiver
- clearbit
- idcrawl
- contactout
- argali
- ciddb
- cellrevealer
- spydialer
- Twilio
- Reverse lookup
- PhoneInfoga
- Sync
- National cell
- Getcontact
- Moriarty-Project
- Get Contact
- True Caller
- Cell Id Lookup
- Device Info
- Cell Finder
- Unkownphone
- Whocallsme
- elenchitelefonici
- nationalcellulardirectory
- phonebooks
- International Phone Directories
- PhoneInfoga
- Spy Dialer
- Phone Validator
- Fone finder
- 411 reverse phone
- Number guru
- Zaba reverse phone
- FullContact
- HLR Lookup
- Ceebydith HLR Lookup
- Free HLR
- HLR Lookup API
- Maltego Phone Search
- SignalHire
- Emobiletracker
- OpenCNAM
- Fullcontact
- seon
- Thatsthem
- Freepeoplesearch
- Epios
- anymailfinder
- getprospect
- ZoomInfo
- Spam Calls
- inteltechniques
- pipl
- phonebook
- CALL APP
- Number Finder IOS
- Dalily Android Apps
- ViewCaller
- inspektur
- lolarchiver
- countrycode
- HLR Tsel Code Area
- HLR Tsel Area Code
- Indosat HLR
- idcrawl
- SMS PING
- SMS PING APK
- Ghunt online tools
- numpi
- Phunter
- numlookup
- haveibeenzuckered
- DetectDee
Pro Tips
If you has found the person phone number you can check at data breach, e wallet, social media, email address (via reset password), getcontact, truecaller, ipqs, fraud checker and last trying to dork or search any info into social media too
- Namechk
- Knowem
- Nexfil
- Sherlock
- Instantusername
- Snitch
- Checkusernames
- Maigret
- Picuki
- ZoomInfo
- Alfred
- Blackbird
- Bellingcat Username
- whatsmyname
- holehe
- hertz
- peekyou
- lolarchiver
- User Searcher
- idcrawl
- Ghunt online tools
- Facebook lookup id
- Sherlock
- Socialsearcher Users
- Nexfil
- Googlesocialsearch
- Google Social Network Transforms
- FullContact
- maigret
- Blackbird
Group Search: site:facebook.com inurl:group
Group Wall Posts Search: site:facebook.com inurl:wall
Pages Search: site:facebook.com inurl:pages
Public Profiles: allinurl: people ‘‘name’’ site:facebook.com
Photos By - https://www.facebook.com/search/taget_id/photos-by
Photos Liked - https://www.facebook.com/search/taget_id/photos-liked
Photos Of - https://www.facebook.com/search/taget_id/photos-of
Comments - https://www.facebook.com/search/taget_id/photos-commented
Friends - https://www.facebook.com/search/taget_id/friends
Videos Tagged - https://www.facebook.com/search/taget_id/videos
Videos By - https://www.facebook.com/search/taget_id/videos-by
Videos Liked - https://www.facebook.com/search/taget_id/videos-liked
Videos Commented - https://www.facebook.com/search/taget_id/videos-commented
Events Attended - https://www.facebook.com/search/taget_id/events-joined
Relatives - https://www.facebook.com/search/taget_id/relatives
or you can use dork for spesific example
id site:facebook.com
page site: facebook.com
id site:facebook.com *
page site: facebook.com *
- Intel Technique
- DumpItBlue
- Facebook Search
- Fb-sleep-stats
- Lookup-ID.com
- SearchIsBack
- Wolfram Alpha Facebook Report
- Facebook Recover Lookup
- Who posted facebook
- sowsearch
- Hastag Analzer
- Export comment
- Facebook endpoint
- Facebook Graph
- Facebook live
- Facebook vid downloader
- Fb Sleep Stats
- Skopenow FB Hunter
- Facebook Data Breach Cheker
- F**ck Facebook Github
- exportcomments
- Hashtagify
- Iconosquare
- Picodash
- Toutatis
- SearchMyBio
- Dumpor
- Hookgram
- Picuki
- Inflact
- Greatfon
- Save Free
- Insta Location Search
- Insta story visual maps
- Snap Insta
- Insta Profiler
- Insta Loader
- Storistalker
- instahunt
- Sterraxcyl IG Profiler
- exportcomments
- Blastup - Insta Downloader
- Insta Stories View
- Instagram Auditor
- Instagram Auditor 2
- upfluence
- toolzu
- pathsocial
- citizenevidence
- watchframebyframe
- YT Mtedata
- TY Geo Find
- YT chat downloader
- youtubecommentsdownloader
- ytcomment
- exportcomments
- yark YT archiving
- Downsub
- Savesubs
- Twitter API
- search.twitter.com
- twitter advanced
- twitter who_to_follow
- Backtweets BackTweets is a Twitter analytics tool that allows users to search through a Tweet archive.
- First Tweet
- Foller.me
- Followerwonk
- GeoSocial Footprint
- Gigatweeter
- Harvard TweetMap
- Hashtagify
- Hashtags.org
- MyTweetAlerts A tool to create custom email alerts based on Twitter search.
- OneMillionTweetMap
- SnapBird
- Social Bearing
- Social Rank First Follower
- Spoonbill
- Tagdef
- TeachingPrivacy
- Tinfoleak
- Trends24
- TrendsMap
- Ttrends
- twbirthday
- TwChat
- tweepsect
- TweetArchivist
- TweetDeck
- Tweeten
- TweetMap
- TweetMap
- TweetPsych
- Tweetreach
- TweetStats
- TweetTunnel
- Twellow
- Tweriod
- Twiangulate
- Twilert
- Twipho
- Twitonomy
- TwitRSS
- Twitter Advanced Search
- Twitter Audit
- Twitter Chat Schedule
- Twitter Counter
- Twitterfall
- Twitter Search
- TWUBS Twitter Chat
- Schedule Warble
- Twint
- Twitwork
- Twitter Account Profiler
- Twitter Account Profiler
- Twitter Archive
- History Twitter
- Wayback Twitter
- Twitter BOT
- Treverse
- Tweetbinder
- onemilliontweetmap
- birdhunt
- exportcomments
- followeraudit
- knowlesys
- stweet
- tweepy
- twtdata
Twitter Search Engine
- Github search name
- Github Archive
- Github Dork
- Fdupes
- Github API (view owner repo and etc)
- Github advisories DB
- sn0int github profil extractor
- Github Trending Repo
- Octosuite Github
Google queries for LinkedIn
Public Profiles: site:linkedin.com inurl:pub
Updated Profiles: site:linkedin.com inurl:updates
Company Profiles: site:linkedin.com inurl:companies
- LinkedInDumper
- Weakestlink
- GatherContacts
- Rocket reach
- Phantom Buster
- reversecontact
- Linkedin Search OSINT
- Linkedin Overlay Remover
Google queries for MySpace
Profiles: site: myspace.com inurl:profile
Blogs: site:myspace.com inurl:blogs
Videos: site:myspace.com inurl:vids
Jobs: site:myspace.com inurl:jobs
Videos: site:myspace.com ‘‘TARGET NAME’’ ‘‘videos’’
Comments: site:myspace.com ‘‘TARGET NAME’’ ‘‘comments’’
Friends: site:myspace.com ‘‘TARGET NAME’’ ‘‘friends’’
- tiktok-hashtag-analysis
- tiktok-downloader
- tiktok API
- tiktok date extract
- Gimenz tiktok downloader
- exportcomments
- Pastebin Alerts
- HaveIBeenPwned
- Hudson Rock Cybercrime Intelligence Free Tools
- breachorclear
- brandmentions
- Google Alert
- flashpoint
- regex
- FindExif
- metapicz
- imageforensic
- metapicz
- jimpl
- pic2map
- labs.tib.eu
- imago-forensics
- Renrot Exif
- Geotag
- PhotOSINT Browser Extension
- Python exif extractor
- Metashield Analyzer
- foca
- Psbdmp
- Find PDF Doc
- Pdf analyzer
- Tools pdf24
- ArchivEye
- Fdupes
- kaseware search query
- ip-adress
- whatismyipaddress
- hunter
- Website informer
- email-checker
- verifyemailaddress
- SignalHire
- Holehe
- Holehe Maltego Transforms
- Spokeo
- Mx Toolbox - Header Email
- getnotify
- epieos
- seon
- Eye
- Thatsthem
- Freepeoplesearch
- Headmail
- Poastal
- anymailfinder
- getprospect
- Email Hippo
- Buster
- Gravatar Email Cheker
- EmailRep
- pwnedOrNot
- Email-Analytics
- Email Header Analisis Toolbox
- Sherlock Eye
- Ghunt
- Email Format
- predictasearch
- emailsearch
- inspektur
- lolarchiver
- Proxynova
- Leakcheck
- exposed
- findemail
- skymem
- idcrawl
- Ghunt online tools
- Hashes email
- sn0int protonmail-pks
- checkcybersecurity
- Proton mail tracking
- Proton Protintelligence
- Ghunt online Japanese Lang
- OSINT rocks
- email-permutator perform possible email addresses
- salesblink email-permutator perform possible email addresses
https://pen-testing.sans.org/blog/2015/12/08/effective-shodan-searches
- DownloadHelper Firefox plugin that will assist in downloading all media from a website
- Exif Viewer
- HTTrack
- Wayback Machine
- cachedview
- url png
- Bellingcat Auto Archive
- Archive today
- bbot
- Meta OSINT
- Shrelock
- Maltego
- OSINT Framework
- OSINT Framework 2
- Twint
- Telegram OSINT
- Recon-Ng
- tinfoleak
- maigret
- mosint
- osint_stuff_tool_collection
- instaloctrack
- SpyScrap
- osintteye
- metagoofil
- Harvester
- Geo creepy
- trape
- ReconDog
- iKy
- Ghunt
- Moriarty-Project
- Mr.Holmes
- octosuite Advanced Github OSINT Framework
- Toutatis
- A tool for OSINT based threat hunting
- K𝚊𝚛𝚖𝚊 𝚟𝟸 is a Passive Open Source Intelligence
- Secure ELF parsing/loading library for forensics reconstruction of malware, and robust reverse engineering tools
- OSINT tool that allows you to find a person's accounts and emails + breached email
- A tool to search Aviation-related intelligence from public sources
- PoC OSINT Discord user and guild information harvester
- Automate downloading archived deleted Tweets
- Discover the location of nearby Telegram users
- OSINT Tool on Twitter and Instagram
- The World's simplest facial recognition api for python and the command line
- Automation and automation of digital forensic tools
- E4GL30S1NT
- Commit stream finding Github repositories by extracting commit
- SingleFile copy of an entire web page in a single HTML file
- Photon Incredibly fast crawler designed for OSINT
- infoooze
- Eye
- More
- Echosec
- Foller
- Tweet Deck
- Tweet Trips
- Tweet Tonomy
- Twinangulate
- Geosocial
- Hash tracking
- Socmint tool
- Spyse
- OSINT Combine
- Cell Id Lookup
- Device Info
- Cell Finder
- GRABIFY IP
- Cek Rekening
- Thatsthem
- IntelligenceX
- lolarchiver
- cybdetective public tool
- OSINT indsutries
Search channel, username anymore
- Telegago
- TelegramDB
- Telegram Search Engine
- Telegram Database: channels, groups and users
- Telegram channels and groups catalog
- Social Finder
- Lyzem Search
- Discover The Best Telegram Channels
- Tele Channel Overiview
- Telepathy
- Telemetr
- Telegramtrac
- TGDev
- IntelX Telegram
- Tele Geo Int
- Tele Phone Number Checker - Bellingcat
- Telegram Geogramint
- Telegram-Trilateration
- TeleTracker by Tsale
- Teletehon
- Authorstream
- Find-pdf-doc
- Free Full PDF
- PDF Search Engine
- RECAP
- SlideShare
- Scribd
- soPDF.com
- FileChef
- File Search Engine
- FilePursuit
- NAPALM FTP Indexer
- Cryptome
- Finda PDF
- Find PDF Doc
- Pdf analyzer
- Tools pdf24
- ArchivEye
- Buffer
- Hashtatit
- Rival IQ
- SocialBakers
- SociaBlade
- Social Searcher
- Mail.Ru Social Network Search
- WATools
- Profil3r
- Oblivion
- Social Analyzer
- Snsscrape
- stratosphere
- OSINT compass
- Sherlock Eye
- ShadowDragon
- sociallinks
- Crimewall
- socialscan
- inspektur
- 7Photos
- Baidu Images
- Bing Images
- Clarify
- Flickr
- GoodSearch Image Search
- Google Image
- Image Identification Project
- MyPicsMap
- PhotoBucket
- Picsearch
- PicTriev
- StolenCameraFinder
- TinEye - Reverse image search engine.
- Worldcam
- Yahoo Image Search
- Yandex Images
- Betaface
- Search4faces
- Pimeyes
- Reminiai
- Search4face
- Vkfacewatch
- Facecheck
- Findmyclone
- Face++
- AWS-Recon
- Azure vidio indexer
- Webcams
- Mever
- InVID Verification
- Google Lens
- Robots Verify
- Amazon Face Recon
- VGG Image Search Engine (VISE)
- Fake face detector
- Telegram Face Match Bot
- berify
- shutterstock
- gettyimages
- imgur
- geospy
- sogou
- geospy
- ExifTool
- Exif Search
- FotoForensics
- Gbimg.org
- Ghiro
- ImpulseAdventure
- Jeffreys Image Metadata Viewer
- JPEGsnoop
- Metapicz
- Forensically
- DiffChecker
- ImgOps
- Pimeyes
- Reminiai
- Search4face
- Vkfacewatch
- Facecheck
- Findmyclone
- Face++
- AWS-Recon
- Image Analyzer
- Pelock
- OCR Image
- labs.tib.eu
- Webcams
- imago-forensics
- Face recon
- Cleanup pictures
- Mever
- InVID Verification
- Google Lens
- Exif Purge
- VGG Image Classification
- VGG Image Search Engine (VISE)
- Fake face detector
- GeoSpy
- gvision
- DiffChecker
- ImgOps
- Telegram Face Match Bot
- picarta
- huggingface
- ID KTP OCR
- Python exif extractor
- exterro
- media IO
- Geospy Github
- imagga
- geospy
- Image J
- Imjoy
- Image J github
- imagemeasurement
- powertoys Microsoft
- Apple Ruler
- geohints
- graylark
- stylesuxx Steganography Online
- earthkit
- imageforensic
- watermarkremover
- AlltheFreeStock
- Death to Stock
- Freeimages
- Freestocks.org
- Gratisography
- IM Free
- ISO Republic
- iStockphoto
- Kaboompics
- LibreStock
- Life of Pix
- NegativeSpace
- New Old Stock
- Pixabay
- Pexels
- Stocksnap
- Shutterstock
- tookapic
- Unsplash
- Pimeyes
- Pixiv
- gettyimages
- imgur
- Aol Videos
- Bing Videos
- Blinkx
- Clarify
- Clip Blast
- DailyMotion
- Deturl
- DownloadHealper
- Earthcam
- Insecam
- Frame by Frame Browser plugin that allows you to watch YouTube videos frame by frame.
- Geosearch
- Internet Archive: Open Source Videos
- LiveLeak
- Metacafe
- Metatube
- Montage
- Veoh
- Vimeo
- Voxalead
- Yahoo Video Search
- YouTube
- YouTube Data Viewer
- ccSUBS Download Closed Captions & Subtitles from YouTube
- YouTube Metadata
- YouTube Geofind
- Video Stabilization Methods
- Azure vidio indexer
- Bilibili scraper
- Webcams
- Kamerka
- airportwebcams
- airportwebcams
- Earthcam
- tvway
- unscreen
- shutterstock
- Atlasify
- Batchgeo
- Bing Maps
- CartoDB
- Colorbrewer
- CrowdMap
- Dominoc925
- DualMaps
- GeoGig
- GeoNames
- Esri
- Flash Earth
- Google Earth
- Google Earth Pro
- Google Maps
- Google Maps Streetview Player
- Google My Maps
- GPSVisualizer
- GrassGIS
- Here
- Hyperlapse
- Inspire Geoportal
- InstantAtlas
- Instant Google Street View
- Kartograph
- Leaflet
- MapAList
- MapBox
- Mapbuildr
- Mapchart.net
- Maperitive
- MapHub
- MapJam
- Mapline
- Map Maker
- Mapquest
- Modest Maps
- NGA GEOINT
- OpenLayers
- Polymaps
- Perry Castaneda Library
- Open Street Map
- QGIS
- QuickMaps
- Scribble Maps
- Terrapattern
- Tableau
- Timescape
- View in Google Earth
- Wikimapia
- World Aeronautical Database
- WorldMap Harvard
- ViaMichelin
- Yahoo Maps
- Zeemaps
- Sentinel Hub
- Maxar
- Zoom Earth
- Remote Pixel
- SunCalc
- ArcGIS
- Pic2Map
- Mapillary
- KartaView
- Satellites Pro
- Liveuamap
- Descartes Labs
- Baidu Maps
- MapChecking
- Windy
- SOAR
- digiKam
- geoq
- gvision
- OSM Bellingcat
- labs.tib.eu
- sketchmapper
- github sketchmapper
- byt-georagging
- CSIS maps
- Humdata maps
- Planet - satellite maps
- OSM Finder
- OSM Finder - Web based
- Wayback Geospatial
- Twitter Geo
- Insta Geo
- NASA EARTH
- EARTH DATA NASA
- peakvisor
- peakfinder
- Calc Map Coordinate
- Latlong Calc
- Gps Visualizer
- Iq Air
- NASA Earth Data
- NASA World View
- Earth Exploer
- Sky Watch Earth Cache
- Sentinel Hub
- Skylens
- Geocreepy
- garmin
- Corona Atlsa
- BMKG RI
- GIS INA
- Kpler
- wanderlog review on Google maps
- planet
- NBR Map
- geohints
- geotips
- shademap
- shadowmap
- livingatlas wayback
- livingatlas wayback Guide
- supermapol
- supermapol docs
- gpsjam
- freemaptools
- bbbike
- geojson
- mooncalc
- moon timeanddate
- urbanaccessregulations
- mapsm
- picarta
- Kaseware Geospatial
- nominatim OSM
- Calculator IPVM
- f4map
- osmbuildings
- geospy
- unwiredlabs
- copernix
- skydb DB for building
- dataspace
- openinframap
- openseamap
- openstreetbrowser
- maproulette
- Old maps online
- graylark
- earthkit
- drivingdirectionsandmaps
- virtualglobetrotting
- Population Count
- grid Area mapping
Conveter tool
*This for you have data like .shp and .kml or geojson and want to viewer or convert with the spesific tool for you analsis or sciene and other
Geojson viewer
3D Map & Building
- G maps
- G earth
- F4maps
- arcgis
- hub arcgis
- onegeo
- osmbuildings
- mapbox
- maptoolkit
- maptiler
- 3D mapper
- peakvisor
- Blender 3D maker
- 3D Maker by OSM
- Microsoft GlobalMLBuildingFootprints
- foursquare
- tripadvisor
- booking
- agoda
- wanderlog review on Google maps
- airbnb
- copernix
- trip
- traveloka
- hotels
- booking
- yelp
- wikinearby
- Wikimapia
- About Urban Legends
- Captin Fact
- Check
- Citizen Desk
- Emergent
- Fact Check
- Full Fact
- MediaBugs
- Snopes The definitive Internet reference source for urban legends, folklore, myths, rumors, and misinformation.
- Verification Handbook
- Verification Junkie
- Verily
- Google Fact
- Open Measures
- Hoaxy
- FEAT
- followeraudit
- TEMPO news ID cek fakta
- Cybercheff The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
- dcode Awesome site for decode, encode, detect cipher and anymore
- Bettercap Framework to perform MITM (Man in the Middle) attacks.
- Yersinia A framework for layer 2 attacks
- FeatherDuster An automated, modular cryptanalysis tool
- Hash Extender A utility tool for performing hash length extension attacks
- Hashcat Password cracking
- DLLInjector Inject dlls in processes
- Metasploit Penetration testing software and exploit
- Pwntools CTF framework and exploit development library
- ROPgadget Framework for ROP exploitation
- Exiftool Read, write and edit file metadata
- Malzilla Malware hunting tool
- Zmap An open-source network scanner.
- Nmap Net mapping and port scanner
- Wireshark Analyze the network dumps
- Apktool Android Decompiler
- Ninja Binary Binary analysis framework
- Binwalk Analyze, reverse engineer, and extract firmware images
- GDB The GNU project debugger
- GEF Advanced debugging capabilities for exploit devs & reverse engineers on Linux
- IDA Most used Reversing software
- PEDA Python Exploit Development Assistance for GDB
- Radare2 UNIX-like reverse engineering framework and command-line toolset
- Windbg Windows debugger distributed by Microsoft
- Boomerang Decompile x86 binaries to C
- Detox A Javascript malware analysis tool
- SmartDeblur Restoration of defocused and blurred photos/images
- HitPaw Enhance image, video and media quality with AI is free and paid
- ImageMagick Tool for manipulating images
- Exiv2 Image metadata manipulation tool
- Stegbreak Launches brute-force dictionary attacks on JPG image
- Steghide Hide data in various kind of images
- Stegsolve Apply various steganography techniques to images
- SearchSploit Command line search tool for Exploit-DB
- Exploitalert List exploiting and vuln
- Lollabs Windows exploiting
- GtfoBins Linux exploiting
- Hacktricks List exploit and vuln cheat sheet walkthrough
- Payload all the things Example and payload injection
- All about bug bounty Bypasses, payloads, Reconnaissance and etc
- Bug Bounty Tips bug bounty reconnaissance
- DnsSpy Desktop NET debugger and assembly editor
- regex101 Tips for Regex
- Blockchain
- Flashpoint
- Intel471
- Tatum
- Ciphertrace
- Bitcoin Abuse
- GraphSense
- Blockhain Explorer
- blockcypher
- BTC Scan
- TON of privacy
- OXT
- etherscan
- Maltego Transform ShadowDragon
- Maltego Social Links Pro
- trackenn
- tokensniffer
Transaction Analysis
- walletexplorer
- bitref
- blockchain
- blockexplorer
- blockcypher
- intelx
- oxt
- bitcoinwhoswho
- etherscan
- etherchain
- Opencellid
- CellTower Locator - Cell2gps
- Cell-id Query
- Location API
- Cell Mapping
- Global Internet Infrastructure Map
- Spy Dialer
- Phone Validator
- Free Operator Search
- HLR Lookup
- Ceebydith HLR Lookup
- Free HLR
- HLR Lookup API
- Maltego Phone Search
- Emobiletracker
- Phone Validator
- Reverse Phone
- Reverse Phone Lookup
- OpenCNAM
- Search Country Operator (IMSI)
- Analysis of IMSI numbers
- World MCC & MNC Code
- World MCC & MNC Code 2
- World Mobile Network Code
- World Network Coverage
- Profone GSM Tracker
- Thatsthem
- Freepeoplesearch
- IMSI imei info
- cellebrite
- LIST MCC & MNC World
- Cell Global Identity World
- MCC MNC World Net
- Cell Global Identity Article
- GSM Cell ID
- predictasearch
- CALL APP
- Number Finder IOS
- Dalily Android Apps
- ViewCaller
- ip info
- countrycode
- evrytania
- sqimway
- cell2gps
- unwiredlabs
- cellphonetrackers
- netmonster
- SMS PING
- SMS PING APK
Pro Tips
If you has found the person phone number you can check at data breach, e wallet, social media, email address (via reset password), getcontact, truecaller, ipqs, fraud checker and last trying to dork or search any info into social media too
- Analyze your WhatsApp Chat
- Chat Visualizer
- WhatsApp Group Links
- Download WhatsApp Profile Picture
- WhatsApp Group Links 2
- Wa tools
- whatsanalyze
- chatvisualizer
- WaGpScraper
- realgrouplinks
Telegram
- TelegramDB
- Telegram Search Engine
- Telegram Database: channels, groups and users
- Telegram channels and groups catalog
- Social Finder
- Telegago
- Lyzem Search
- Discover The Best Telegram Channels
- Tele Channel Overiview
- Telegramtrac
- TGDev
- Telegram Geogramint
- Telegram-Trilateration
- TeleTracker by Tsale
- Teletehon
Build your sockpuppet account and proctect your privacy
- How to build sockpupper account
- Roop Image face swap from AI
- Thispersondoesnotexist
- Protonmail
- Nordvpn
- NOX
- Browser Extension
- Burner Phone Number
- Phone Burner
- Hushed
- Temp Phone Number
- Temp Phone Number and SMS activate
- Temp Phone Number SMS Receive
- Temp Mail 1
- Temp Mail 2
- Temp Mail 3
- Temp Mail 4
- Temp Mail 5
- Cryptocurrency Payment Monero
- Cryptocurrency Payment Bitcoin
- Openpgp
- Operating System
- Zmail
- Open DNS
- I2P
- TOR
- Apple Kuncitara
- AI Vidio Maker
- deepfakesweb
- DeepFaceLive
- fakeinfo
- Online SMS
- fakepersongenerator
- deepfakesweb
Social Network and blogging
- Wordpress
- Blogger
- Medium
- Letsenhance
- Cutout
- Upscale
- Canva
- Adobe
- Picwish
- Fotor
- SIUN
- DPED
- neural-enhance
- neural-enhance
- Reminiai
- Depix
- Realesrgan
- HitPaw
- Cleanup Pictures
- Gfpgan
- Realesrgan Playground
- waifu2x
- imglarger
- imageupscaler
- Google maps
- Social geo lens
- Open street map
- Google Maps Geocoding
- Googleearthengine
- OSM Bellingcat
- byt5-geotagging
- CSIS maps
- Humdata maps
- Planet - satellite maps
- OSM Finder
- OSM Finder - Web based
- wanderlog review on Google maps
- map making app
- Overpass turbo
- Bellingcat Shadow Finder
- Belinggcat Shadow Finder Hosted
- Moon Calc
- Coordinate Calc
- latlongdata calc
- Docs overpass API
- Zoom earth
- satellites
- wikimapia
- peakfinder
- kartaview
- mapillary
- calcmaps
- nominatim OSM
- moscow RU
- sun calc
- earthkit
- gaisma sunrise, sunset arround world
- Discord servers
- Discover servers
- Discord history tracker
- Darvester
- Discord Leaks
- Dutchosintguy Discord
- discordbee.com
- Thehiddenwiki
- Onion Link
- MEMEX
- Onion
- Onion city
- Ahmia
- TorBot
- Darkfeed
- Torch
- Onionsearch
- Darknet Book
- immuniweb
- darknetlive
- ransomwatch
- Ahmia Onion Site
- Haystak Onion Site
- Dark Search Onion Site
- Tor66 Onion Site
- Torch
- Darkowl
- Digital Shadows
- Onion Live
- ATII
- Onion Land Search
- hunchly
- hunch darkweb guide
- darkweblinks
- onion scan
- hunch ly
- DarkWeb Archive - Active Japan lang
- Stealthmole
- Darkweb bookmarks
- Maltego digital shadows transform
- Maltego cybersixgill transform
- Doge Darknet Osint Graph Explorer
- Maltego social links professional transform
- TorBot
- Darkfeed
- Flare
- pryingdeep
- Maltego
- Darknet Book
- Onios Scan
- Cyber Int Darkweb Intel Platform
- SOC Radar Darkweb Int Monitoring
- I2P Download
- zerofox
- ShadowDragon
- sociallinks
- Crimewall
- sizeof
- dailydarkweb
- darkwebinformer
- Ahmia Onion Site
- Haystak Onion Site
- Dark Search Onion Site
- Tor66 Onion Site
- Torch
- Darkowl
- Digital Shadows
- Onion Live
- ATII
- Onion Land Search
- hunchly
- hunch darkweb guide
- darkweblinks
- hunch ly
- darknetstats
- darknetlive
- Deepweb more resouces
- Yggdrasil
- MISP
- Maltego
- Filesec
- Logstash kibana
- Kibana
- Extundelete Ext3 or ext4 partition recovery
- TestDisk
- VirusTotal
- Avilla Forensics
- Autopsy
- Recuva
- Magnetforensics
- Opentxt
- Ntfstool Forensics
- Sleuthkit
- SIFT SANS
- SIFT CLI
- HYAS Insight
- imago-forensics
- SimpleImager
- Processhacker
- Koodous
- Nirsoft Bwowsing History
- dfrlab.org
- atlanticcouncil
- Mever
- cellebrite
- MOBSF
- RMS - Mobile Pentest
- APK Leaks
- forensictools
- VolWeb
- C2-Tracker
- Wanna Browser Sandbox
- pestudio
- procmon
- IoC Editor
- Gfobins
- Lolbas
- Loonbins
- sociallinks
- decompiler
- exterro
- wireshark
- bulk-extractor
- sleuthkit
- recoverit
- easeus
- belkasoft
- domaintools
- Imperva
- magnetforensics
- IBM
- Hex viewer
- Ghidra
- IDA
- PSPY Linux
- Process explorer Windows
- volatilityfoundation
- Fire eye tool
- SANS Faculty Free Tools
- Forensically
- GCK'S FILE SIGNATURES TABLE
- stylesuxx Steganography Online
*Pro Tips
You can analysis of hash, header, signature, evtx, ip, byte, file format, memory dumping, network, system process, start up apps, background apps
- Eraser
- Thunderbird
- Ublock origin
- Zmail
- Open DNS
- I2P
- Gnupg
- HTTPS Everywhere
- Pelock
- Tails OS
- WOT
- Temp Mail 1
- Temp Mail 2
- Temp Mail 3
- Phone Burner
- Hushed
- Privacy Badger
- U block origin
- Blur IMG Extension
- Apple Kuncitara
- Apple Focus Mode
Payment
Password Manager
- ScamDB- Report and Search Scam Accounts
- Cek Rekening - Indonesian By Kominfo
- Kredibel - Indonesian
- Verihub - Indonesian
- Scamadviser
- Ipqualityscore
- OpenCNAM
- Fullcontact
- Spam Calls
- Maltego Transform ShadowDragon
- Crimewall
- scamsearch global scam database
- getcontact
- SEON
Search people missing and abuse, strict content, removing, takedown and minimize your data on the internet
- Google image removal Remove your image from Google
- Delete Me Remove your personal information in internet and data broker (scrapper)
- backgroundchecks A directory of direct links to delete your account from web services
- ATII The Anti-Human Trafficking Intelligence Initiative human trafficking, child exploitation, and child sexual abuse material (CSAM) through the advancement of prevention, detection, investigation, and reporting mechanisms.
- Stopncii Free tool designed to support victims of Non-Consensual Intimate Image (NCII) abuse
- Bing content removal Chech the detail on here
- Google content removal Check the detail on here
- Web archiver remover Check the detail here and here view detail on Help web archive
- Facebook Privacy Strict and disable bot crawl search engine index account
- zerofox From threat intelligence to brand and domain protection to rapid response DISRUPTION & TAKEDOWNS
- Instagram Privacy Strict and disable bot crawl search engine index account
- Missing Kids Remove nudes or sexually-exploitive images or videos taken when you were a child out there on the internet
- Takeit Down Help remove online nude, partially nude
- Inhope Report suspected child sexual abuse images or videos
- ReportIWF Indonesia Proctect and remove sexualy, nudes on internet
- ReportIWF Proctect and remove sexualy, nudes on internet
- kemenpppa Indonesia Kementrian perlindungan anak dan perempuan
- National Center for Missing and Exploited Children Report the content to the appropriate authorities around the world
- Inhope Find your country listed, contact INHOPE abuse internet
- cybertip US National Center for Missing and Exploited Children
- cybertip Canada National Center for Missing and Exploited Children
- internethotline Japan Internet Hotline Center Japan
- safekaznet Kazakhstan Internet Association of Kazakhstan
- Liga Internet Russia Safe Internet League
- Kocs Korean Korea Communication Standards Commission
- Thailand Internet Hotline Internet Foundation for the Development of Thailand
- Jugendschutz Germany Internet Foundation Germany
- FSM Germany Internet Foundation Germany
- ECO Germany Internet Foundation Germany
- NCOSE National Center on Sexual Exploitation (NCOSE) exists because people should be free to live and love without sexual abuse and exploitation.
- More info all region Check available internet hotline around world
- 411 Request for remove your data from this site
- 411 Info Request for remove your data from this site
- Absolute People Search Request for remove your data from this site
- Acxiom Request for remove your data from this site
- Addresses Request for remove your data from this site
- Address Search Request for remove your data from this site
- Archives Request for remove your data from this site
- Apollo Request for remove your data from this site
- Arivify Request for remove your data from this site
- Azerch Request for remove your data from this site
- Background Alert Request for remove your data from this site
- Background Check Request for remove your data from this site
- Background Checkers Request for remove your data from this site
- BatchSkipTracing Request for remove your data from this site
- BatchLeads Request for remove your data from this site
- BatchDialer Request for remove your data from this site
- BatchDriven Request for remove your data from this site
- Been Verified Request for remove your data from this site
- Buzzfile Request for remove your data from this site
- Call Truth Request for remove your data from this site
- Caller Smart Request for remove your data from this site
- Centeda Request for remove your data from this site
- Check People Request for remove your data from this site
- Check Secrets Request for remove your data from this site
- Checkr Request for remove your data from this site
- City-Data Request for remove your data from this site
- ClickSearch Request for remove your data from this site
- Clustr Maps Request for remove your data from this site
- Complete Investigation Services Request for remove your data from this site
- Confidential Phone Lookup Request for remove your data from this site
- Contact Out Request for remove your data from this site
- Connected Investors Request for remove your data from this site
- Corporation Wiki Request for remove your data from this site
- Councilon Request for remove your data from this site
- Cyber Background Checks Request for remove your data from this site
- Data Axle Request for remove your data from this site
- DataVeria Request for remove your data from this site
- DataChk Request for remove your data from this site
- Dehashed Request for remove your data from this site
- DelvePoint Request for remove your data from this site
- DexKnows Request for remove your data from this site
- DirectMail Request for remove your data from this site
- DMA Choice | DMA Choice Request for remove your data from this site
- Epsilon-Main Request for remove your data from this site
- Epsilon-Abacus Request for remove your data from this site
- Epsilon-CFD Request for remove your data from this site
- Epsilon-Shopper Request for remove your data from this site
- Fama Request for remove your data from this site
- FamilySearch Request for remove your data from this site
- Family Tree Now Request for remove your data from this site
- Fast People Fast Request for remove your data from this site
- Fast People Search Request for remove your data from this site
- Fax VIN Request for remove your data from this site
- Find People Search Request for remove your data from this site
- Free Background Checks Request for remove your data from this site
- Free People Directory Request for remove your data from this site
- Free Phone Tracer Request for remove your data from this site
- Free Public Profile Request for remove your data from this site
- FindRec Request for remove your data from this site
- Glad I Know Request for remove your data from this site
- GoLookup Request for remove your data from this site
- Grey Pages Request for remove your data from this site
- Haines & Company Request for remove your data from this site
- Hometry Request for remove your data from this site
- HPCC-USA Request for remove your data from this site
- ID Crawl Request for remove your data from this site
- ID True Request for remove your data from this site
- Infopay Request for remove your data from this site
- Infospace Request for remove your data from this site
- Infotracer Request for remove your data from this site
- Infotracer UK Request for remove your data from this site
- Instant Check Mate Request for remove your data from this site
- InstantPeopleFinder Request for remove your data from this site
- Intelius Request for remove your data from this site
- IntelligenceX Request for remove your data from this site
- IRBSearch Request for remove your data from this site
- Kiwi Searches Request for remove your data from this site
- LexisNexis/Accurint Request for remove your data from this site
- LexisNexis Direct Marketing Request for remove your data from this site
- Locate Family Request for remove your data from this site
- Locate People Request for remove your data from this site
- MashPanel Request for remove your data from this site
- Mastercard Request for remove your data from this site
- Mastercard Request for remove your data from this site
- MugshotLook Request for remove your data from this site
- MyHeritage Request for remove your data from this site
- MyLife Request for remove your data from this site
- National Cellular Directory Request for remove your data from this site
- Neighbor Report Request for remove your data from this site
- NewEnglandFacts Request for remove your data from this site
- Number Guru Request for remove your data from this site
- Numberville Request for remove your data from this site
- Nuwber Request for remove your data from this site
- Official USA Request for remove your data from this site
- Old Friends Request for remove your data from this site
- Ownerly Request for remove your data from this site
- PeekYou Request for remove your data from this site
- Peep Lookup Request for remove your data from this site
- PeopleBackgroundCheck Request for remove your data from this site
- People By Name Request for remove your data from this site
- People By Phone Request for remove your data from this site
- People Data Labs Request for remove your data from this site
- People Finder Request for remove your data from this site
- People Finders Request for remove your data from this site
- People Looker Request for remove your data from this site
- People Search 123 Request for remove your data from this site
- People Search Expert Request for remove your data from this site
- People Finder Request for remove your data from this site
- People Finders Request for remove your data from this site
- People Looker Request for remove your data from this site
- People Search 123 Request for remove your data from this site
- People Search Now Request for remove your data from this site
- People Searcher Request for remove your data from this site
- People Smart Request for remove your data from this site
- People Trace UK Request for remove your data from this site
- People’s Check Request for remove your data from this site
- People Whiz Request for remove your data from this site
- Phonebook BT Request for remove your data from this site
- Pub360 Request for remove your data from this site
- Public Data Digger Request for remove your data from this site
- Public Data USA Request for remove your data from this site
- Public Info Services Request for remove your data from this site
- Public Records Request for remove your data from this site
- Public Records Now Request for remove your data from this site
- Quick People Trace Request for remove your data from this site
- Radaris Request for remove your data from this site
- Reveal Name Request for remove your data from this site
- Reveal Phone Owner Request for remove your data from this site
- Sales Spider Request for remove your data from this site
- Search Bug Request for remove your data from this site
- Search People Free Request for remove your data from this site
- Selfie Systems Request for remove your data from this site
- Smart Background Checks Request for remove your data from this site
- Social Catfish Request for remove your data from this site
- Spy Dialer Request for remove your data from this site
- Spokeo Request for remove your data from this site
- SpyFly Request for remove your data from this site
- Spytox Request for remove your data from this site
- State Records Request for remove your data from this site
- Super Pages Request for remove your data from this site
- Sync Me Request for remove your data from this site
- Telephone Directories Request for remove your data from this site
- Tenn Help Request for remove your data from this site
- That’s Them Request for remove your data from this sitef
- The Real Yellow Pages Request for remove your data from this site
- Thomson Reuters/Westlaw/CLEAR Request for remove your data from this site
- TLO Request for remove your data from this site
- Tower Data Request for remove your data from this site
- True Caller Request for remove your data from this site
- True People Search Request for remove your data from this site
- True People Search.net Request for remove your data from this site
- Truth Finder Request for remove your data from this site
- United States Phonebook Request for remove your data from this site
- Unmask Request for remove your data from this site
- USA People Search Request for remove your data from this site
- US Phone Pro Request for remove your data from this site
- US Phonebook Request for remove your data from this site
- USA Trace Request for remove your data from this site
- US Search Request for remove your data from this site
- Valassis Request for remove your data from this site
- Valpak/Cox Request for remove your data from this site
- Verecor Request for remove your data from this site
- Vericora Request for remove your data from this site
- Veriforia Request for remove your data from this site
- Veripages Request for remove your data from this site
- Verispy Request for remove your data from this site
- Veritora Request for remove your data from this site
- Visa Request for remove your data from this site
- Voter Records Request for remove your data from this site
- White Pages Request for remove your data from this site
- WYTY Request for remove your data from this site
- XLEK Request for remove your data from this site
- Yellow Book Request for remove your data from this site
- Yellow Pages Request for remove your data from this site
- ZoomInfo Request for remove your data from this site
- Get Contact Unlisting Request for remove your data from this site
- Interpol int View and search public Yellow Notices for missing persons
*NB : Please read carefully and check the ToS or privacy statment. Its taking to long, you need to patiently. For this point, your data is not guaranteed to be lost 100% on the internet, but this is to minimize the spread of your data and data breaches
- licenseplatemania
- platesmania
- findbyplate
- google image
- Wiki Routes
- Carnet
- ID number plate
- ID number wikipedia
- World Car Brand Wikipedia
- carlogos
- commercialtrucktrader
- License Plate AI Recognition
- vehicleregistrationapi
- vehiclehistory
- faxvin
- worldlicenseplates
- autotraveler
- cipher387
- inteltechniques
- avtocod
- dmvcivls.gov
- etimspayments
- platerecognizer
- partialnumberplate UK
VIN Checker
- faxvin
- vehiclehistory
- vindecoderz
- fordvinlookup
- chevroletforum
- hyundaiforum
- nissanusa
- cadillacforum
- dodgeforum
- toyota
- audiworld
- vinpit
- scionlife
- nhtsa
- bigrigvin
- cartell Japan
- carvx JP
- cyclevin
- flightradar24
- flightaware
- radarbox
- adsbexchange
- Planefinder
- Live ATC
- planespotters
- globe plane
- theaviationist
- airrecognition
- gpsjam
- federal aviation administration
- adsb one
- adsb lol
- adsb fi
- open sky network
- adsb im
- flightsafety
- airfleets
- skyvector
- flightconnections
- flight status check current flight
- jetphotos
- raf
- skytrack
- dictatoralert
- airspace
- shiptracker
- marinetraffic
- vesselfinder
- gisis
- WindWard
- Kpler
- Container tracking
- marineteacher
- seasearcher
- shipfinder
- shiplocation
- CMA CGM vesel finder
- marinevesseltraffic
NOOA Incident MAP
- Open Railways
- Train Tracker
- Yandex Train Map
- KAI ID
- KAI ID Map Railway
- World Railway Train
- Railway zugfinder
- Phishious Secure Email Gateway (SEG) for phishing email header (escape detection)
- Operative framework investigation OSINT framework, you can interact with multiple targets
- Mod Login Credentials reuse
- Cr3dOv3r Credential reuse
- Crackmapexec Password Spray
- Datasploit OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc
- CloudFail DNS and old database records to find hidden IP's behind the CloudFlare network
- cloudgazer Find Real IPs hidden behind Cloudflare with Criminal IP(criminalip.io), security OSINT Tool
- Rustcan Port scanner
- NMAP Port scanner
- Getrails Dork hacking that work with Google, Duckduckgo and Torch
- OWASP Maryam open-source framework based on OSINT and data gathering
- Metabigor Intelligence tool, its goal is to do OSINT tasks and more but without any API key
- OSINT BBOT A recursive internet scanner for hackers.
- Spiderfoot A Scrapping web tool
- Zeus-Scanner A web scanner
- Zenrows Bypassing captcha and WAF
- Scrapfly Bypassing captcha and WAF
- capsolver Bypassing captcha and WAF
- 2captcha Bypassing captcha and WAF
- Puppeter For web scrapper and info gath
- MOBSF Mobile Pentest Tool
- RMS - Mobile Pentest Mobile Pentest Tool
- Mortar Mortar evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
- APK Leaks Decompile APK and find the sensitive info
- Web copilot An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters
- Nuclei template js template Nuclei template. Extract Data From JS ffile e.g key, endpoint, etc
- Atlas Sql Tamper Suggester Open source tool that can suggest sqlmap tampers to bypass WAF/IDS/IPS, the tool is based on returned status code
- Go Phish Gophish is a powerful, open-source phishing framework that makes it easy to test your organization's exposure to phishing.
- Advanced SQL Injection A cheat sheet that contains advanced queries for SQL Injection of all types.
- Payload all the things A list of useful payloads and bypass for Web Application Security and Pentest/CTF
- Hack Tricks The great sites for pentesting and recon cheat sheet
- GAP-Burp-Extension Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
- Cloundflare Reconnaissance Real IP address for Cloudflare Bypass
- Cloudmare Cloudflare, Sucuri, Incapsula real IP tracker.
- emkei Free online fake mailer with attachments spoof email
- GraphSpy Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
- revshells Reverse Shell Generator
- enum4linux Linux alternative to enum.exe for enumerating data from Windows and Samba hosts
- vulmap Vulmap - Web vulnerability scanning and verification tools
- Active-Directory-Exploitation-Cheat-Sheet A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
- HPING Hping network tool
- AlliN A flexible scanner
- KUNYU Kunyu, more efficient corporate asset collection
- jwt tool A toolkit for testing, tweaking and cracking JSON Web Tokens
- jwt-secrets-list possible to help developers and DevOpses identify it by traffic analysis at the Wallarm NGWAF level
- aparoid Static and dynamic Android application security analysis
- Active Directory Cheat Active Directory Pentesting Mind Map
- sploitus Awesome exploit list like Exploit DB
- thehacker recipe Awesome pentesting checklist and cheat
- OPSEC Collection of OPSEC Tradecraft and TTPs for Red Team Operations
- CSAF CSLAB Cyber Security Awareness Framework (CSAF)
- hakoriginfinder Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
- gmapsapiscanner Used for determining whether a leaked/found Google Maps API Key is vulnerable to unauthorized access by other applications or not
- jsluice Extract URLs, paths, secrets, and other interesting bits from JavaScript
- DisableFlagSecure Disable FLAG_SECURE on all windows, enabling screenshots in apps that normally wouldn't allow it, and disabling screenshot detection on Android 14+
- trufflehog Find leaked credentials and Find and verify secrets
- SecretFinder SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
- uproot-JS Extract JavaScript files from burp suite project with ease
- JS beautify vscode extension Beautify javascript, JSON, CSS, Sass, and HTML in Visual Studio Code
- Bug bounty hunter javascript reccon Awesome trick and tips reccon web assets
- Javascript reccon This is a simple guide to perform javascript recon in the bugbounty
- Nuclei OSINT Templates Awesome list nuclei template for OSINT and reccon from web pages
- Official Nuclei Templates List official nuclei templates available for pentesting
- XRAY A powerful security assessment tool
- villain C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells *maybe FUD
- aquasecurity vuln list Collect vulnerability information and save it in parsable format automatically
- trivy Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
- aquasecurity Redhat vuln list Red Hat security advisories
- Vuls Vulnerability scanner for Linux/FreeBSD, agent-less, written in Go
- OneForAll Awesome web reccon and subdomain, DNS reccon
- Can I Take Over xyz A list of services and how to claim (sub)domains with dangling DNS records
- Can I Take Over DNS A list of DNS providers and how to claim (sub)domains via missing hosted zones
- DevsecOps Secure Code Resource for developers, security professionals, and operations teams who want to learn about the world of DevSecOps
- dwisiswant0 Nuceli Template Dir Awesome list and easy for search nuclei templates
- dwisiswant0 CF-CHECK CloudFlare Checker written in Go
- HTTP Docs Awesome guides protocol for transmitting hypermedia documents for pentester and developer
- Devoper Mozila Awesome resouces guides protocol for transmitting hypermedia documents for pentester and developer
- List Red Team Tool Cheat Sheet List cheat sheet for red team tools
- Red Team Notes Good notes for red team
- OSCP NOTES Awesome OSCP notes cheat sheet for your labs and exam or CTF
- mytechnotalent Reverse-Engineering A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
- Mobile Nuclei Template Nuclei template for static analysis mobile security assessments
- Awesome Threat Intel A curated list of Awesome Threat Intelligence resources
- Hacker Search Engine Awesome cheat for enumeration for pentester
- tinyhack Awesome article and blog abaout hacking and android
- compactbyte Awesome article and blog abaout hacking, reverse engineering and android
- noxer About Noxer is a powerful Python script designed for automating Android penetration testing tasks within the Nox Player emulator.
- Get-ReverseShell A solution to create obfuscated reverse shells for PowerShell.
- OSCE 3 Guide Guide for OSCE 3 and OSEE (OSWE, OSEP, OSED, OSEE)
- Enumerate IAM Enumerate the permissions associated with AWS credential set
- Ired team Awesome list and notes for exploit, initial access and pentesting
- Subt SubT is a tool to check if a subdomain is vulnerable to subdomain takeover. It uses
subfinder
to search for subdomains,dig
to check CNAME, andcurl
to check status code - apk2url An OSINT tool to quickly extract IP and URL endpoints from APKs by disassembling and decompiling
- dogbolt Online decompiler
- ezXSS ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting
- grayhatwarfare Search AWS bucket
- pivotnacci Pivot into the internal network by deploying HTTP agents
- vulnshot Vulnerability Management From Nuclei CLI and tools for pentesting
- Fierpa Lambda Android reverse engineering & automation framework
Social Engineering
Active Directory
- BloodHound
- Certify
- Certipy
- certi
- PKINITtools
- ADCSPwn
- PassTheCert
- kerbrute
- Adinfo
- SharpADWS via Active Directory Web Services (ADWS) protocol
- SOAPHound via Active Directory Web Services (ADWS) protocol
- SharpHostInfo
Webshell Bypass
Credential Access
Post Exploitation
- metasploit-framework
- CrackMapExec
- impacket
- wmiexec-Pro
- pstools
- Rubeus
- Powermad
- PowerSploit
- Responder
- Responder-Windows
- pivotnacci Pivot into the internal network by deploying HTTP agents
Credential Dumping
Credentials
- Have I Been Pwned
- Dehashed
- Leak-Lookup
- Snusbase
- LeakCheck.io
- crackstation.net
- breachdirectory.org
- Intel Techniques Breach Tool
Password crack
- hashcat A tool brute and crack password hash
- john A tool brute and crack password hash
- thc hydra A tool brute and crack password
- CiLocks Crack Interface lockscreen, Metasploit and More Android/IOS Hacking
- crackstation Awesome database password crack and identifier
- Hashes Awesome database password crack and identifier
- Hashes Escrow You can earn money or make a password crack request with community help (Pay)
Wordlists for all
- SecLists
- SecDictionary
- ffuf
- Dictionary-Of-Pentesting
- fuzzDicts
- Web-Fuzzing-Box
- PentesterSpecialDict
- fuzz.txt
- wordlists
- Hashmob
- RockYou2024
Web fuzz wordlists
Generate wordlists
Generate subdomains and wordlists
Private Deployment
Generate subdomains and wordlists(offline)
Kali/Linux
Windows
Default Credentials
- DefaultCreds-cheat-sheet
- datarecovery
- cirt.net
- routerpasswords
- portforward
- cleancss
- toolmao
- datarecovery
Local Enumeration
- HackBrowserData
- BrowserGhost
- chrome: chromepass
- firefox_decrypt
- foxmail: foxmail-password-decryptor
- how-does-MobaXterm-encrypt-password
- navicat_password_decrypt
- how-does-navicat-encrypt-password
- Sunflower_get_Password
- shcrt
- SharpDecryptPwd decrypt locally
- SharpXDecrypt
Privilage Escalation Cheat and check
- Gfobins Awesome privilage escalation cheat and checklist
- Lolbas Awesome privilage escalation cheat and checklist
- Loonbins Awesome privilage escalation cheat and checklist
- Mac OS privilage escalation Awesome privilage escalation cheat and checklist
- PEASS NG Awesome automatic enum for privilage escalation cheat and checklist
- wadcoms WADComs is an interactive cheat sheet, offensive security tools and their respective commands, to be used against Windows/AD environments
- g0tmi1k linux priv esc Basic Linux Privilege Escalation
- Windows Privilage Escalation Methods of escalating privilege on Windows-based machines and CTFs with examples
Hacking Playground
- Audio metadata
- Google Translate by speech
- Microsoft Translator
- Yandex Translate
- Apple Translate by speech
- translatedlabs
- Adobe Audition
- Sound classification with YAMNet
- Praat
- phonexia
- SoundScrape
- Online loudness meter
- soundeffectssearch
- vocalremover
- audacityteam
- vocalremover
Audio enchange quality
Detect a fake network, asn, ip geo, mobile carrier, whois ip and VPN
- militaryfactory
- Military and other uniform badges
- SMALL ARMS SURVEY
- dfrlab.org
- atlanticcouncil
- NASA EARTH
- EARTH DATA NASA
- peakvisor
- peakfinder
- Geoconfirmed
- Air Wars
- Copernicus
- Ej Atlas
- Intro OSINT Military
- Telegram Geogramint
- Skylens
- Geocreepy
- Kamerka
- Earthcam
- onemilliontweetmap
- birdhunt
- garmin
- SALW
- Earth ESA
- APP Sentinel
- NASA Fire Dataset
- Google Earth Pro
- CIA GOV
- Acleddata
- Global Conflict
- Google Public Data
- huntintel
- planet
- NBR Map
- ADS B
- itamilradar
- info-res
- syria.liveuamap
- NATO INT
- understandingwar
- worldbeyondwar
- planefinder
- WEB SDR
- Bellingcat Radar
- airrecognition
- gpsjam
- freemaptools
- earthobservatory NASA
- mooncalc
- suncalc
- conflict-damage
- Liveuamap
- Arcgis Military Overlay
- cesium
- armscontrol
- sipri
- Online Identification of Explosive Ordnance: Resources
- skyvector
- US Millitary Base
- airspace
- worldview NASA
- Ukraine Cyber Operation
- Microsoft GlobalMLBuildingFootprints
- Conflict Gaza damage
- Conflict Ukraine damage
- Ukriane Bellingcat Map
Analysis for IMINT and find the geolocation, azimuth and etc
- suncalc
- timeanddate
- sunearthtools
- academo azimuth calc
- findmyshadow
- shadowcalculator
- shademap
- bellingcat shadow finder
- Moon Calc
- Dcode Azimuth Calc
- carbidedepot Trigonometry Calculator
- shadowmap
- gaisma sunrise, sunset arround world
Academic Literature
- Academic Literature on Open Source Research & Methods
- OSINT ethics
- G Drive - Navigating digital media
Resources and collection for your make tool OSINT
- Maltego
- Mgrs Mapper
- Neo4j
- Kepler Mapping
- Google Chart
- Chart JS
- fiugis
- Map Hub
- Maltego Casefile
- Any Chart
- High Charts
- Any Logic
- GO js Charts
- cytoscape
- sigmajs
- graph-gallery
- R lib
- D3 js
- Folium
- Gephi
- leafletjs
- QGIS
- Trus Pilot
- Google Alert
- White Pages
- Tripadvisor
- Trustindex
- G Map Review
- Provenexpert
- SIMPU RI
- Jobstreet.co.id
- WEB Check
- brightcloud ip lookup
- Url Filltering
- A href Backlink Checker
- Neil Patel Backlink
- Semrush Backlink
- Small SEO Tool Backlink
- SEO Backlink Check
- Moz Backlink
- SPAM Check Score
- MOZ Spam Check
- NIK PARSE
- Maltego Transform ShadowDragon
- Kaseware
- opentender ID
- lpse lkpp ID
- ahu ID
- Minerba ESDM ID
- MODI ID
- HAKI ID
- Katadata ID
- pddikti ID
- pipl
- ipqs
- sociallinks
- urlvoid
Search News Journalist and Documentary Sites
- Glanlaw
- paxforpeace
- Bellingcat
- The Guardians
- Drone Emprit
- Google News
- MagPortal
- aljazeera
- gijn
- institute aljazeera
- apnews
- unocha
- ohchr
- ochaopt
- narasi ID
- watchdoc ID
- kumparan ID
- katadata ID
- BRIN ID
- ShadowDragon
- Delpher
- colonialarchitecture
- niod archive
- digitalcollections
- zoeken
- nationaalarchief
- archives
- Arsip Indonesia
- Worldcat
- MPN SIDAK kominfo
- monash edu
- digitalcollections
- scholarlypublications
- nationaalarchief
- myheritage
- CNN World
- CNN ID
- Nationalgeographic
- BPS ID
- Vice ID
- DW ID
- histography
- muckrack
- internet archive
- Journalist toolbox
- rferl
- newspapers
- rollcall
- reuters
- sipri
Social Media Analytics
- Tiktok
- Youtube
- Quora
- eumostwanted EU
- nationalcrimeagency UK
- FBI Most Wanted
- FBI
- secretservice
- pusiknas Polri ID
- kejaksaan ID
- reskrimum Polri ID
- reskrimum Metro Polri ID
- Maltego Transform ShadowDragon
- stealthmole
- NCA most wanted
- ShadowDragon
- sociallinks
- Crimewall
- breach-hq
OSINT politics and geopolitics, risk crisis
- civicus
- freedomhouse
- hunger map
- native-land
- riskmap
- splcenter
- safeairspace
- globaldetentionproject
- tasteatlas
- global terrorism database
- datasets global terrorism database Kaggle
- search-uk-sanctions
- sanctionsmap
- chroniclingamerica
- Data catalog world bank
- Google Patents
Terrorism & Radical
- Europol Publications
- terrorist-organizations
- Sanctions against terrorism
- EU financial sanctions list
- apollomapping
- MODIS NASA
- ESRI
- n2yo
- satellitemap
- planet
- space track
- google earth
- satellitetracker
- starlink
- orbtrack
- isstracker database
- Zoom Earth
- In the sky
- Maxar
- Windy
- Satellites Pro
- livingatlas
- platform leo labs
- earthobservatory NASA
- EO Browser
- NASA Firms
- BMKG
- GEE Google Earth Engine
- NASA Worldview
- dataspace
- imagehunter
- earthkit
- arcgis
- evdc ESA Orbit
- skytruth
- Microsoft GlobalMLBuildingFootprints
*Aditional Information coverage sat
Satellite | Resolution | Overpass Frequency |
---|---|---|
Planet Satellite | 3 M | Daily |
Sentinel-2 Satellite | 10 M | Every 5 days |
Landsat 8/9 Satellite | 30 M | Every 16 days |
Sentinel-3 Satellite | 300 M | Daily |
MODIS Satellite | 250-1000 M | Daily |
Source: Bellingcat
- Zenrows Bypassing captcha and WAF
- Scrapfly Bypassing captcha and WAF
- capsolver Bypassing captcha and WAF
- 2captcha Bypassing captcha and WAF
- Puppeter For web scrapper and info gath
- spiderfoot Automates OSINT for threat intelligence and mapping your attack surface.
- TorBot Scrapping darkweb
- TorCrawl Scrapping darkweb
- Onioningestor Scrapping darkweb
- selenium Web automation & site crawler
- BeautifulSoup Open source and collaborative framework for extracting the data you need from websites.
- BeautifulSoup Python library for pulling data out of HTML and XML files
- scrapehero Web scarapper vendor
- Google maps review scrapper Google maps review scrapper
- Omkar List site for scrapper
You can use for study academic literature, search book, people name, old archive and other
- colonialarchitecture
- niod archive
- digitalcollections
- zoeken
- nationaalarchief
- archives
- Arsip Indonesia
- Worldcat
- MPN SIDAK kominfo
- geheugen delpher
- Old maps online
- Delpher
- pastvu
- thgtoa The comprehensive guide for online anonymity and OpSec
- HiddenVM HiddenVM — Use any desktop OS without leaving a trace.
- OPSEC Roadmap The best DeFi, Blockchain and crypto-related OpSec researches and data terminals
- OPSEC Guides Hardening tips and guide for OPSEC
- BounceBack Stealth redirector for your red team operation security
- OPSEC 101 A repository of advice and guides to share with friends and family who are concerned about their safety during online activities and the security of their devices
- cqcore UK Find OSINT, OPSEC, Obfuscation, Privacy, Infosec & Digital Exposure Profiling educational material, with useful News, Blogs, Top Tips
Search Expert or Journalist
Check the similarity or plagiarism of the content and web apps
Text Analyzer
- 1text
- gptzero
- grammarly
- duplichecker
- smallseotools
- turnitin
- hivemoderation
- humata
- kipper
- sintelix
- ntlk
- voyant
- brandmentions
Audio Analyzer
Image and Vidio Analyzer
Website
Company
*Pro tips : You can use it with the social engineering and creating own tools
This is list data broker, you can search or delete form data broker list on here
This is for you searching software alternative
Analyzing for MASINT e.g your image, vidio, building, maps, simulation, sat or sensor and other things
This is path for you learn OSINT
- deepdarkCTI
- osintcombine
- overtoperator
- maltego
- skopenow image int
- Telegram OSINT
- OSINT Handbook
- The Threat Intelligence Lifecycle
- Five Phashes of the Threat Intelligence Lifecycle
- Threat Intelligence Lifecycle | Phases & Best Practices Explained
- Open-Source Intelligence (OSINT) Cycle
- Learn and training OSINT free
Browser List
Brave: https://brave.com/
Tor Broswer: https://www.torproject.org
Whonix: https://www.whonix.org/
Zeronet: https://zeronet.io/