10.4. 社会工程学¶
10.4.2. 社交工具¶
- SlackPirate Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace
- twint An advanced Twitter scraping & OSINT tool
10.4.3. 个人搜索¶
- pipl
- hunter
- EagleEye
- LinkedInt
- sherlock
- email enum
- Sreg
- usersearch
- User Searcher User-Searcher is a powerful and free tool to help you search username in 2000+ websites.
10.4.4. Hacking database¶
10.4.5. 钓鱼¶
- spoofcheck
- gophish
- SocialFish
- HFish A Most Convenient Honeypot Platform
- blackeye complete Phishing Tool, with 32 templates +1 customizable
- king phisher Phishing Campaign Toolkit
- espoofer An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures
- ditto A tool for IDN homograph attacks and detection
- SiteCopy sitecopy is a tool that facilitates personal website backup and network data collection
- goblin 一款适用于红蓝对抗中的仿真钓鱼系统
10.4.6. squatting¶
- dnstwist Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
10.4.7. 网盘搜索¶
10.4.9. 伪造¶
- email_hack 基于 Python 伪造电子邮件发件人