10.4. 社会工程学¶
10.4.1. OSINT¶
10.4.2. 社交工具¶
SlackPirate Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace
twint An advanced Twitter scraping & OSINT tool
10.4.3. 个人搜索¶
User Searcher User-Searcher is a powerful and free tool to help you search username in 2000+ websites.
10.4.4. Hacking database¶
10.4.5. 钓鱼¶
HFish A Most Convenient Honeypot Platform
blackeye complete Phishing Tool, with 32 templates +1 customizable
king phisher Phishing Campaign Toolkit
espoofer An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures
ditto A tool for IDN homograph attacks and detection
SiteCopy sitecopy is a tool that facilitates personal website backup and network data collection
goblin 一款适用于红蓝对抗中的仿真钓鱼系统
10.4.6. squatting¶
dnstwist Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
10.4.7. 网盘搜索¶
10.4.8. 密码猜测¶
10.4.9. 伪造¶
email_hack 基于 Python 伪造电子邮件发件人