Ubikron
You probably know Roelof Temmingh as the man who created Maltego 17 years ago, and who has been working on the Vortimo tool for the last few years.
A few days ago he released Ubikron, a tool for tracking, tagging, and saving web investigations
https://www.ubikron.com/
You probably know Roelof Temmingh as the man who created Maltego 17 years ago, and who has been working on the Vortimo tool for the last few years.
A few days ago he released Ubikron, a tool for tracking, tagging, and saving web investigations
https://www.ubikron.com/
BountyOS
New Linux distro for different #cybersecurity tasks:
- based on Debian 12
- 75+ tools
- simple installation (ISO file)
https://bountyos.github.io/
Creator Sirat Sami (analyz3r) (5K+ reputation on HackerOne!)
New Linux distro for different #cybersecurity tasks:
- based on Debian 12
- 75+ tools
- simple installation (ISO file)
https://bountyos.github.io/
Creator Sirat Sami (analyz3r) (5K+ reputation on HackerOne!)
Domain Hunter
Search domains by keywords and filter by TLD (10M+ domains mapped).
50 results free, export to JSON + quick links to Shodan, VirusTotal, URLScanIO and URLVoid.
domainhunter.pro
Search domains by keywords and filter by TLD (10M+ domains mapped).
50 results free, export to JSON + quick links to Shodan, VirusTotal, URLScanIO and URLVoid.
domainhunter.pro
HTML Inspector
Chrome extension from x.com/nononsenseintel to search sensitive data in opened tab HTML code:
HTML/JavaScript code comments
File names/paths of images/documents
robots.txt, ads.txt, app-ads.txt
Meta tags/HTML attributes
Sitemap
JSON-LD
https://chromewebstore.google.com/detail/html-inspector/fpaahdcndgfpbbddmgckaifkfljkfkhd
Chrome extension from x.com/nononsenseintel to search sensitive data in opened tab HTML code:
HTML/JavaScript code comments
File names/paths of images/documents
robots.txt, ads.txt, app-ads.txt
Meta tags/HTML attributes
Sitemap
JSON-LD
https://chromewebstore.google.com/detail/html-inspector/fpaahdcndgfpbbddmgckaifkfljkfkhd
Subscrape
#Python tool to search subdomains and extract titles, urls, emails, tokens and any other information from the HTML code of their main pages using regular expressions.
https://github.com/cesc0sec/SecResearch
#osint
#Python tool to search subdomains and extract titles, urls, emails, tokens and any other information from the HTML code of their main pages using regular expressions.
https://github.com/cesc0sec/SecResearch
#osint
R00M 101 OSINT Tools Directory
113 + tools (now focused in #socmint)
For social media intelligence, archiving, automation, downloading, monitoring, scraping, searching and more.
https://r00m101.com/tools
113 + tools (now focused in #socmint)
For social media intelligence, archiving, automation, downloading, monitoring, scraping, searching and more.
https://r00m101.com/tools
👍2
Awesome BlackHat Arsenal
Collection of tools featured in Black Hat Arsenal events (2015-2025, Asia, Europe, USA, Canada, MEA):
- Lab Tools
- Web/AppSec
- Red Teaming
- #OSINT
- Blue Team & Detection
- Reverse Engineering
https://github.com/elbraino/awesome-blackhat-arsenal
Collection of tools featured in Black Hat Arsenal events (2015-2025, Asia, Europe, USA, Canada, MEA):
- Lab Tools
- Web/AppSec
- Red Teaming
- #OSINT
- Blue Team & Detection
- Reverse Engineering
https://github.com/elbraino/awesome-blackhat-arsenal
👍2
Have LLMs Finally Mastered Geolocation
Test of 20 models against 25 photos, rating each from 0 (red) to 10 (dark green) for accuracy in geolocating the images
https://www.bellingcat.com/resources/how-tos/2025/06/06/have-llms-finally-mastered-geolocation/?utm_source=
#osint #geoint
Test of 20 models against 25 photos, rating each from 0 (red) to 10 (dark green) for accuracy in geolocating the images
https://www.bellingcat.com/resources/how-tos/2025/06/06/have-llms-finally-mastered-geolocation/?utm_source=
#osint #geoint
👍2
SkyTruth
Free online map that help to find oil slicks in satellite imagery (with LLM) and identify vessels/oil platforms that may be responsible for those slicks.
https://cerulean.skytruth.org/
#osint #geoint
Free online map that help to find oil slicks in satellite imagery (with LLM) and identify vessels/oil platforms that may be responsible for those slicks.
https://cerulean.skytruth.org/
#osint #geoint
👍2
OnionLand
Darknet search engine (work in simple browser) + a series of article-guides on using Tor and other methods to access the .onion domain zone.
https://onionland.io/
Darknet search engine (work in simple browser) + a series of article-guides on using Tor and other methods to access the .onion domain zone.
https://onionland.io/
👍2
Open Measures
Free online tool to analyse keyword post statistics across social media platforms (BlueSky, 4chan, Fediverse, Telegram, VK, Rutube, Rumble Video and others).
public.openmeasures.io
#osint #socmint
Free online tool to analyse keyword post statistics across social media platforms (BlueSky, 4chan, Fediverse, Telegram, VK, Rutube, Rumble Video and others).
public.openmeasures.io
#osint #socmint
👍1
MerkleMap
A tool to search for domains using wildcards. Useful both for phishing and typosquatting investigations and for finding subdomains/linked sites.
Partially free. May work with a slight delay.
merklemap.com
#osint #CTI
A tool to search for domains using wildcards. Useful both for phishing and typosquatting investigations and for finding subdomains/linked sites.
Partially free. May work with a slight delay.
merklemap.com
#osint #CTI
👍2❤1
PageCached
A simple and free online service for finding old versions of web pages in search engine caches and web archives.
https://pagecached.com/
#osint #socmint
A simple and free online service for finding old versions of web pages in search engine caches and web archives.
https://pagecached.com/
#osint #socmint
VK WATCH
Face photo search tool for the VK social network (over a billion profiles worldwide).
https://vk.watch/
(don't pay to view profiles, just copy ID from VKwatch's URL and open profile by ID in VK)
#osint #socmint
Face photo search tool for the VK social network (over a billion profiles worldwide).
https://vk.watch/
(don't pay to view profiles, just copy ID from VKwatch's URL and open profile by ID in VK)
#osint #socmint
👍1
Story Map
Free online tool for creating map-based visualisations (with captions, markers, photos). A lot of different options and customisations.
https://storymap.knightlab.com/
#geoint #visualisation
Free online tool for creating map-based visualisations (with captions, markers, photos). A lot of different options and customisations.
https://storymap.knightlab.com/
#geoint #visualisation
👍1
Blockchain OSINT
- Blockchain Explorers
- Crypto OSINT Analysis & Learning
- APIs & Data Sources
- Compliance, Risk, & AML Resources
- Learning Resources
- Investigation Workflows
https://github.com/codeluu/blockchain-osint
#osint #crypto
- Blockchain Explorers
- Crypto OSINT Analysis & Learning
- APIs & Data Sources
- Compliance, Risk, & AML Resources
- Learning Resources
- Investigation Workflows
https://github.com/codeluu/blockchain-osint
#osint #crypto
❤1👍1
Rhino User Checker
Free online tool (looks like #cli, but it's a web app) to search profiles by username on different social networks. Export advanced profile data (avatars, descriptions, registration dates, etc.) to JSON.
https://usercheck.oscarzulu.org/
#osint #socmint
Free online tool (looks like #cli, but it's a web app) to search profiles by username on different social networks. Export advanced profile data (avatars, descriptions, registration dates, etc.) to JSON.
https://usercheck.oscarzulu.org/
#osint #socmint
👍1
BadDNS
#Python #cli tool for detecting domain/subdomain takeovers (all kinds).
- check for dangling CNAME records, NS records, MX records
- enumerate subdomains by NSEC-walking
- check HTML content + TXT record content
https://github.com/blacklanternsecurity/baddns
#Python #cli tool for detecting domain/subdomain takeovers (all kinds).
- check for dangling CNAME records, NS records, MX records
- enumerate subdomains by NSEC-walking
- check HTML content + TXT record content
https://github.com/blacklanternsecurity/baddns
👍1
FAKJS
Super fast #go tool that finds different sensitive data in JavaScript files:
- API keys, tokens, etc.
- Internal or hidden endpoints
- Configuration data
- Potential indicators of exposed logic or backend connections
https://github.com/thd3r/fakjs
Super fast #go tool that finds different sensitive data in JavaScript files:
- API keys, tokens, etc.
- Internal or hidden endpoints
- Configuration data
- Potential indicators of exposed logic or backend connections
https://github.com/thd3r/fakjs
❤1
Pentester Guide
- Certifications
- Pentesting Practice Platforms
- Foss Labs
- Bug Bounty Hunting Platforms
- Independent Pentesting Platforms
- 0Day Market
- Operating System for Hacking
- Hackers Manuals
https://github.com/ZishanAdThandar/pentest/
#cybersecurity
- Certifications
- Pentesting Practice Platforms
- Foss Labs
- Bug Bounty Hunting Platforms
- Independent Pentesting Platforms
- 0Day Market
- Operating System for Hacking
- Hackers Manuals
https://github.com/ZishanAdThandar/pentest/
#cybersecurity
👍2