# OSINT Websites
| **Category** | **Website** |
| ------------------------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| `Attack Surface` | |
| `Attack Surface` | |
| `C2 Frameworks` | |
| `Certificate Search` | |
| `Certificate Search` | |
| `Cloud` | |
| `DNS` | [MXToolBox DNS](https://mxtoolbox.com/DnsLookup.aspx) |
| `DNS` | [DNSDumpster](https://dnsdumpster.com/) |
| `Dork` | [GitHub - GDorks](https://github.com/Ishanoshada/GDorks) |
| `Dynamic Analysis` | [Any.Run](https://app.any.run/) |
| `Dynamic Analysis` | [Joe SandBox](https://www.joesandbox.com/) |
| `Dynamic Analysis` | [Hybrid Analysis](https://www.hybrid-analysis.com/) |
| `Email Addresses` | [www.hunter.io](http://www.hunter.io) |
| `Email Spoofing` | [10MinuteMail](https://10minutemail.net/) |
| `Learning` | [IPPSec](https://ippsec.rocks) |
| `OSINT` | |
| `OSINT` | |
| `OSINT` | [Fast People Search](https://www.fastpeoplesearch.com/) |
| `Offensive Tools` | [Source](https://github.com/bats3c/darkarmour) **Darkarmour** is a tool to generate and utilize obfuscated binaries for use against Windows hosts. |
| `Offensive Tools` | [Source](https://github.com/rapid7/metasploit-framework) **MSFVenom and Metasploit Framework** is an extremely versatile tool for any pentester's toolkit. It serves as a way to enumerate hosts, generate payloads, utilize public and custom exploits, and perform post-exploitation actions once on the host. Think of it as a swiss-army knife. |
| `Offensive Tools` | [Source](https://github.com/its-a-feature/Mythic) The **Mythic C2 framework** is an alternative option to Metasploit as a Command and Control Framework and toolbox for unique payload generation. |
| `Offensive Tools` | [Source](https://github.com/samratashok/nishang) **Nishang** is a framework collection of Offensive PowerShell implants and scripts. It includes many utilities that can be useful to any pentester. |
| `Offensive Tools` | [Nishang PowerShell Scripts](https://github.com/samratashok/nishang/blob/master/Shells/Invoke-PowerShellTcp.ps1) |
| `Offensive Tools` | [DefaultCreds - Script](https://github.com/ihebski/DefaultCreds-cheat-sheet) This is a script that contains a large database of known default credentials for Services |
| `Offensive Tools` | [Online Reverse Shell Generator](https://www.revshells.com/) |
| `Payloads All The Things` | [Source](https://github.com/swisskyrepo/PayloadsAllTheThings) Here, you can find many different resources and cheat sheets for payload generation and general methodology. |
| `Scripts` | [Powershell Gallery](https://www.powershellgallery.com/) |
| `Search Code` | [www.grep.app](http://www.grep.app) |
| `Search Code` | |
| `Search Code` | |
| `Server` | [www.shodan.io](http://www.shodan.io) |
| `Server` | [www.onyphe.io](http://www.onyphe.io) |
| `Server` | [www.censys.io](http://www.censys.io) |
| `Server` | |
| `Threat Intel` | [app.binaryedge.io](https://viceintelpro.gitbook.io/viceintelpro/offensive-security/osint-1/broken-reference) |
| `Threat Intel` | [viz.greynoise.io](https://viz.greynoise.io/) |
| `Threat Intel` | [fofa.info](https://en.fofa.info/) |
| `Threat Intel` | [zoomeye.hk](https://www.zoomeye.hk/) |
| `Threat Intel` | |
| `Threat Intel` | |
| `Threat Intel` | |
| `Threat Intel` | |
| `Threat Intel` | [VirusTotal](https://www.virustotal.com/) |
| `Threat Intel` | [SPUR](https://app.spur.us/) |
| `Threat Intel` | [Abuse IPDB](https://www.abuseipdb.com/) |
| `Threat Intel` | [Meta Defender](https://metadefender.opswat.com/) |
| `Utility` | [CyberChef](https://gchq.github.io/CyberChef/) |
| `Utility` | [Microsoft Error Code Check](https://login.microsoftonline.com/error) |
| `Utility` | [User Agent Strings Explained](https://useragentstring.com/index.php) |
| `Utility` | [User Agent Strings List](https://useragentstring.com/pages/useragentstring.php) |
| `Vulnerabilities` | |
| `WiFi Networks` | [www.wigle.net](http://www.wigle.net) |
| `File Info` | [Encoded File Types](https://fileinfo.com/filetypes/encoded) |
| `OSINT` | [BGP Tool Kit](https://bgp.he.net/) |
| `OSINT` | [Trufflehog](https://github.com/trufflesecurity/truffleHog) |
| `Dork` | [Google Dork Generator](https://www.stationx.net/google-dorks-cheat-sheet/) |
| `Offensive Tools` | [Red Team Notes and Tricks](https://www.ired.team/) |
| `Offensive Tools` | [PayloadsAllTheThings Upload Insecure Files](https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/Upload%20Insecure%20Files) |