文章目录
9.3. 信息收集
9.3.1. 子域爆破
9.3.2. 域名获取
- the art of subdomain enumeration
- sslScrape
- aquatone A Tool for Domain Flyovers
- teemo A Domain Name & Email Address Collection Tool
9.3.3. 弱密码爆破
9.3.4. Git信息泄漏
- GitHack By lijiejie
- GitHack By BugScan
- GitTools
- Zen
- dig github history
- gitrob Reconnaissance tool for GitHub organizations
- git secrets
- shhgit Find GitHub secrets in real time
- GitHound GitHound pinpoints exposed API keys on GitHub using pattern matching, commit history searching, and a unique result scoring system. A batch-catching, pattern-matching, patch-attacking secret snatcher
- x patrol Github leaked patrol
9.3.5. Github监控
- Github Monitor Github Sensitive Information Leakage Monitor
- Github Dorks
- GSIL
- Hawkeye
- gshark
- GitGot
- gitGraber
9.3.6. 路径及文件扫描
9.3.7. 路径爬虫
- crawlergo A powerful dynamic crawler for web vulnerability scanners
9.3.8. 指纹识别
- Wappalyzer
- whatweb
- Wordpress Finger Print
- CMS指纹识别
- JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way
- TideFinger
9.3.9. Waf指纹
9.3.10. 端口扫描
9.3.11. DNS数据查询
9.3.12. DNS关联
9.3.13. 云服务
9.3.14. 数据查询
9.3.15. Password
- Probable Wordlists Wordlists sorted by probability originally created for password generation and testing
- Common User Passwords Profiler
- chrome password grabber
9.3.16. 字典
9.3.17. CI信息泄露
- secretz minimizing the large attack surface of Travis CI