Outils d'utilisateurs

Outils du Site


des_outils_pour_faire_une_cartographie_d_un_site

Ceci est une ancienne révision du document !


FIXME Le PAD pour proposer une amélioration à cette page : https://pad.zenk-security.com/p/merci

Des outils pour faire une cartographie d'un site

🛠 The main goal for this script is to automate all of the process of recon/enumeration that is run every time, and instead focus our attention on real pen testing. https://github.com/rkhal101/nmapAutomator

🛠 bscan is a command-line utility to perform active information gathering and service enumeration. https://github.com/welchbj/bscan/blob/master/README.md

🛠 Auto-Recon, Information-Gathering Shell Script https://github.com/gotr00t0day/Auto-Recon/blob/master/README.md

🛠 Total Recon will install all the recon tools you need https://github.com/vitalysim/totalrecon/blob/master/README.md

🛠 Identify technologies used on websites. https://www.shielder.it/ https://github.com/ShielderSec/webtech

🛠 A high performance offensive security tool for reconnaissance and vulnerability scanning https://github.com/evyatarmeged/Raccoon

🛠 WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website. https://github.com/EnableSecurity/wafw00f

🛠 Wappalyzer is a cross-platform utility that uncovers the technologies used on websites. It detects content management systems, ecommerce platforms, web frameworks, server software, analytics tools and many more. https://www.wappalyzer.com/

🛠 WhatWeb identifies websites. Its goal is to answer the question, “What is that Website?”. WhatWeb recognises web technologies including content management systems (CMS), blogging platforms, statistic/analytics packages, JavaScript libraries, web servers, and embedded devices. WhatWeb has over 1800 plugins, each to recognise something different. WhatWeb also identifies version numbers, email addresses, account IDs, web framework modules, SQL errors, and more. https://github.com/urbanadventurer/WhatWeb

🛠 Aquatone is a tool for visual inspection of websites across a large amount of hosts and is convenient for quickly gaining an overview of HTTP-based attack surface. https://github.com/michenriksen/aquatone

🛠 pdlist. A passive subdomain finder https://github.com/gnebbia/pdlist

🛠 Sublert - is a security and reconnaissance tool to automatically monitor new subdomains. https://github.com/yassineaboukir/sublert

🛠 Pyfiscan is free web-application vulnerability and version scanner and can be used to locate out-dated versions of common web-applications in Linux-servers https://github.com/fgeek/pyfiscan

🛠 My Recon Automation https://github.com/Mad-robot/Spartan

🛠 netograph - tools to monitor and understand deep structure of the web. https://netograph.io/

🛠 Packages that actively seeks vulnerable exploits in the wild. More of an umbrella group for similar packages. https://blackarch.org/recon.html

🛠 FOFA - is a cyberspace search engine. https://fofa.so/

🛠 onyphe - is a search engine for open-source and cyber threat intelligence data collected. https://www.onyphe.io/

🛠 IntelligenceX - is a search engine and data archive. https://intelx.io/

🛠 binaryedge - it scan the entire internet space and create real-time threat intelligence streams and reports. https://app.binaryedge.io/

🛠 PublicWWW - find any alphanumeric snippet, signature or keyword in the web pages HTML, JS and CSS code. https://publicwww.com/

🛠 IntelTechniques - this repository contains hundreds of online search utilities. https://inteltechniques.com/index.html

🛠 Hackle - search engine for hackers and security professionals. https://hackle.dev/

🛠 hunter - lets you find email addresses in seconds and connect with the people that matter for your business. https://hunter.io/

🛠 GhostProject? - search by full email address or username. https://ghostproject.fr/

des_outils_pour_faire_une_cartographie_d_un_site.1587747810.txt.gz · Dernière modification: 2020/04/24 19:03 par M0N5T3R