And we will go with you walk along the tram rails We sit on pipes at the beginning of the ring road Our warm wind will be black smoke from the pipe of the plant The waybill will be a yellow platform of the traffic light
A friend of Putin’s daughter Natalya Popova is involved in the creation of the Hamster Combat project, which forced millions of users to poke a hamster: https://t.me/zhabaigaduka/2115
Research Troyans and Backdors in the button mobile phones of Russian retail: https://habr.com/ru/articles/575626/
Fake Chrome errors are used to launch PowerShell scripts: https://xakep.ru/2024/06/19/powershell-fake-patches/
OSINT Tools, Services and Investigations:
Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox, Waterfox, Thunderbird, SeaMonkey) profiles: https://github.com/unode/firefox_decrypt
Mechanize is a ruby library that makes automated web interaction easy: https://github.com/sparklemotion/mechanize
Nokogiri makes it easy and painless to work with XML and HTML from Ruby: https://github.com/sparklemotion/nokogiri
Cobweb is a web crawler with very flexible crawling options. Can either use standalone or can be used with resque to perform clustered crawls: https://github.com/stewartmckee/cobweb
RubyRetriever is a Web Crawler, Scraper & File Harvester. Available as a command-line executable and as a crawling framework: https://github.com/joenorton/rubyretriever
Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. The tool offers concurrent scanning, allowing users to define their preferred concurrency level for faster results. Whether you are on Linux, Windows, or MacOS: https://github.com/RevoltSecurities/SubProber
Gocrawl is a polite, slim and concurrent web crawler written in Go: https://github.com/PuerkitoBio/gocrawl
Pholcus is a distributed high-concurrency crawler software written in pure golang: https://github.com/andeya/pholcus
BadJPG is a Python script allows you to hide a payload within a JPG image using steganography techniques. It uses the stegano library to encode and decode messages within the least significant bit (LSB) of the image pixels: https://github.com/basicW/badjpg
sqlmc. Official Kali Linux tool to check all urls of a domain for SQL injections: https://github.com/malvads/sqlmc
Matano. Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS: https://github.com/matanolabs/matano
AI:
Verba. The Golden RAGtriever, an open-source application designed to offer an end-to-end, streamlined, and user-friendly interface for Retrieval-Augmented Generation (RAG) out of the box. In just a few easy steps, explore your datasets and extract insights with ease, either locally with HuggingFace and Ollama or through LLM providers such as OpenAI, Cohere, and Google: https://github.com/weaviate/Verba
ScrapeGraphAI is a web scraping Python library that uses LLM and direct graph logic to create scraping pipelines for websites and local documents (XML, HTML, JSON, etc.): https://github.com/VinciGit00/Scrapegraph-ai
Software Development:
Frida. Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers. Learn more at frida.re: https://github.com/frida/frida
Neosync. Open source data anonymization and synthetic data orchestration for developers. Create high fidelity synthetic data and sync it across your environments: https://github.com/nucleuscloud/neosync
Linux & DevOps:
Project Calico is an open-source project with an active development and user community. Calico Open Source has grown to be the most widely adopted solution for container networking and security, powering 8M+ nodes daily across 166 countries: https://github.com/projectcalico/calico
gpslogger. Lightweight GPS Logging Application For Android: https://github.com/mendhak/gpslogger
Maltrail. Malicious traffic detection system: https://github.com/stamparm/maltrail
GoTo is a simple terminal SSH manager that provides you with an easy access to the list of your favorite SSH servers. Binaries included: https://github.com/grafviktor/goto
Flipper Zero:
A collection of awesome resources & modules for the Flipper Zero device. Best used with Rogue Master Flipper Zero Custom Firmware: https://github.com/RogueMaster/awesome-flipperzero-withModules
Collection of Flipper Zero scripts dumps and tools: https://github.com/jkctech/Flipper-Zero-Scripts
Flipper Zero application for NMEA 0183 serial GPS modules: https://github.com/ezod/flipperzero-gps
New from CyberDetective:
Building a Versatile Threat Intelligence Program for Any Environment. A very detailed and in-depth article by twitter.com/ervin_zubic on how to put the Threat Intelligence Cycle to work with examples of tools for each stage: https://publication.osintambition.org/building-a-versatile-threat-intelligence-program-for-any-environment-fe2d6935baa2
Advanced Search Tools - regional search engines, privacy search engines, search engines dorking, fact checking tools, database search tools and more: https://start.me/p/nRADzL/advanced-search-tools
Google & Shodan Dorks for web cameras search. Large list of search queries to find internet-connected webcams. Can be used in Google as well as various IP search engines (Shodan, Netlas, Censys etc): https://github.com/ExploitXpErtz/WebCam-Google-Shodan-Dorks
New from GitHub Community:
Glance. A self-hosted dashboard that puts all your feeds in one place: https://github.com/glanceapp/glance
LinkedIn: OSINTech's Featured Timeline
SubStack: OSINTech's Substack
WARNING! All tools, programs and techniques published in this article and repository are used for informational, educational purposes or for information security purposes. The authors are not responsible for the activities that users of these tools and techniques may carry out, and urge them not to use them to carry out harmful or destructive activities directed against other users or groups on the Internet.