OSINT - Websites

Category	Website
Attack Surface	https://app.netlas.io/
Attack Surface	https://fullhunt.io
C2 Frameworks	https://howto.thec2matrix.com/
Certificate Search	https://crt.sh
Certificate Search	https://app.netlas.io/certs/
Cloud	https://buckets.grayhatwarfare.com/
DNS	MXToolBox DNS
DNS	DNSDumpster
Dork	GitHub - GDorks
Dynamic Analysis	Any.Run
Dynamic Analysis	Joe SandBox
Dynamic Analysis	Hybrid Analysis
Email Addresses	www.hunter.io
Email Spoofing	10MinuteMail
Learning	IPPSec
OSINT	https://intelx.io/
OSINT	https://phonebook.cz/
OSINT	Fast People Search
Offensive Tools	Source Darkarmour is a tool to generate and utilize obfuscated binaries for use against Windows hosts.
Offensive Tools	Source MSFVenom and Metasploit Framework is an extremely versatile tool for any pentester's toolkit. It serves as a way to enumerate hosts, generate payloads, utilize public and custom exploits, and perform post-exploitation actions once on the host. Think of it as a swiss-army knife.
Offensive Tools	Source The Mythic C2 framework is an alternative option to Metasploit as a Command and Control Framework and toolbox for unique payload generation.
Offensive Tools	Source Nishang is a framework collection of Offensive PowerShell implants and scripts. It includes many utilities that can be useful to any pentester.
Offensive Tools	Nishang PowerShell Scripts
Offensive Tools	DefaultCreds - Script This is a script that contains a large database of known default credentials for Services
Offensive Tools	Online Reverse Shell Generator
Payloads All The Things	Source Here, you can find many different resources and cheat sheets for payload generation and general methodology.
Scripts	Powershell Gallery
Search Code	www.grep.app
Search Code	https://searchcode.com/
Search Code	https://publicwww.com
Server	www.shodan.io
Server	www.onyphe.io
Server	www.censys.io
Server	https://ivre.rocks
Threat Intel	app.binaryedge.io
Threat Intel	viz.greynoise.io
Threat Intel	fofa.info
Threat Intel	zoomeye.hk
Threat Intel	https://leakix.net/
Threat Intel	https://urlscan.io
Threat Intel	https://socradar.io
Threat Intel	https://pulsedive.com
Threat Intel	VirusTotal
Threat Intel	SPUR
Threat Intel	Abuse IPDB
Threat Intel	Meta Defender
Utility	CyberChef
Utility	Microsoft Error Code Check
Utility	User Agent Strings Explained
Utility	User Agent Strings List
Vulnerabilities	https://vulners.com
WiFi Networks	www.wigle.net
File Info	Encoded File Types
OSINT	BGP Tool Kit
OSINT	Trufflehog
Dork	Google Dork Generator
Offensive Tools	Red Team Notes and Tricks
Offensive Tools	PayloadsAllTheThings Upload Insecure Files

---

Threat Intel Resources

• A curated list of Awesome Threat Intelligence resources // https://github.com/hslatman/awesome-threat-intelligence

• A curated list of awesome threat detection and hunting resources // https://github.com/0x4D31/awesome-threat-detection

• A curated list of amazingly awesome open source intelligence tools and resources // https://github.com/jivoi/awesome-osint

• Get the latest technical details on significant advanced malware activity // https://www.fireeye.com/current-threats.html

• 10 of the Best Open Source Threat Intelligence Feeds // https://d3security.com/blog/10-of-the-best-open-source-threat-intelligence-feeds/

• Weekly Threat Briefing—Cyber Threat Intelligence Delivered to You // Anomali Weekly Threat Briefing

• 11 Cyber Threat Intelligence Tips // https://www.isaca.org/resources/news-and-trends/isaca-now-blog/2016/11-cyber-threat-intelligence-tips

• Threat Intelligence Defined and Explored // https://www.forcepoint.com/cyber-edu/threat-intelligence

• Cyber Threat Intelligence Feeds // https://thecyberthreat.com/cyber-threat-intelligence-feeds/