Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/FofaInfo/Awesome-FOFA

The FOFA Library collects usage tips, common scenarios, F&Q, and more for FOFA.
https://github.com/FofaInfo/Awesome-FOFA

List: Awesome-FOFA

cybersecurity fofa osint search-engine threat-intelligence

Last synced: about 6 hours ago
JSON representation

The FOFA Library collects usage tips, common scenarios, F&Q, and more for FOFA.

Host: GitHub
URL: https://github.com/FofaInfo/Awesome-FOFA
Owner: FofaInfo
Created: 2023-03-13T07:58:32.000Z (over 1 year ago)
Default Branch: main
Last Pushed: 2024-08-28T02:20:47.000Z (3 months ago)
Last Synced: 2024-08-28T03:33:37.573Z (3 months ago)
Topics: cybersecurity, fofa, osint, search-engine, threat-intelligence
Homepage: https://fofa.info
Size: 74.9 MB
Stars: 164
Watchers: 2
Forks: 17
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-ip-search-engines - Awesome FOFA
awesome-ip-search-engines - Awesome FOFA

README

# Awesome-FOFA Library

[:ledger: 中文 README](https://github.com/FofaInfo/FOFA-Library/blob/main/README_zh.md)

## Get Started with FOFA
[A Beginner’s Guide](https://github.com/FofaInfo/Awesome-FOFA/blob/main/Get%20Started%20with%20FOFA/A%20Beginner%E2%80%98s%20Guide.md)

[How to Get Free F-point from FOFA? ](https://github.com/FofaInfo/Awesome-FOFA/blob/main/Get%20Started%20with%20FOFA/How%20to%20Get%20Free%20F-point%20from%20FOFA%3F.md)

## Basic scenario

[How to use FOFA to discover free LLM resources?](https://github.com/FofaInfo/Awesome-FOFA/blob/76d6ff924c4c498a6752fad32c46d71441e40994/Basic%20scenario/How%20to%20use%20FOFA%20to%20discover%20free%20LLM%20resources%3F.md)

[Elevating FOFA Search Efficiency through Novel Approaches](https://github.com/FofaInfo/Awesome-FOFA/blob/61e0e3ca4d783fb24ea5f5211663cfb3429f1334/Basic%20scenario/Elevating%20FOFA%20Search%20Efficiency%20through%20Novel%20Approaches.md)

[How to Independently Refresh Your Assets on FOFA?](https://github.com/FofaInfo/Awesome-FOFA/blob/a8084af052b699899ada7e9f6b9adb05f349817f/Basic%20scenario/How%20to%20Independently%20Refresh%20Your%20Assets%20on%20FOFA%3F.md)

[The correct way to use Fuzzy Search in FOFA](https://github.com/FofaInfo/FOFA-Library/blob/main/Basic%20scenario/The%20correct%20way%20to%20use%20Fuzzy%20Search%20in%20FOFA.md)

[How to effectively eliminate interference through certificates in the asset discovery](https://github.com/FofaInfo/Awesome-FOFA/blob/main/Basic%20scenario/How%20to%20effectively%20eliminate%20interference%20through%20certificates%20in%20the%20asset%20discovery.md)

[Asset Inventory from a God's Perspective](https://github.com/FofaInfo/Awesome-FOFA/blob/main/Basic%20scenario/Asset%20Inventory%20from%20a%20God%E2%80%98s%20Perspective.md)

[Best Approach for Fetching Large Amounts of Asset in FOFA](https://github.com/FofaInfo/Awesome-FOFA/blob/main/Basic%20scenario/Best%20Approach%20for%20Fetching%20Large%20Amounts%20of%20Asset%20in%20FOFA.md)

## Advanced Use Cases

[Practical FOFA Asset Expansion- Unmasking the Trail of the 'Silver Fox' APT](https://github.com/FofaInfo/Awesome-FOFA/blob/5e54a179c7203cadc1e950e4e8f679caed5f9dee/Basic%20scenario/Practical%20FOFA%20Asset%20Expansion-%20Unmasking%20the%20Trail%20of%20the%20'Silver%20Fox'%20APT.md)

[Conducting APT Bitter Tracking Operation Using FOFA](https://github.com/FofaInfo/Awesome-FOFA/blob/159a94ef0098db6fa5093f8cefff4d133f25ed8c/Basic%20scenario/Conducting%20APT%20Bitter%20Tracking%20Operation%20Using%20FOFA.md)

[Analysis and Tracing of the ObserverStealer](https://github.com/FofaInfo/Awesome-FOFA/blob/1c416977d7f4dc2dd9d6d7a13e15c3dea7bfa60a/Basic%20scenario/Analysis%20and%20Tracing%20of%20the%20ObserverStealer.md)

[Practical FOFA Asset Expansion: Sidewinder APT](https://github.com/FofaInfo/Awesome-FOFA/blob/e270c63b8849999f44da81cb13746ca659bbbdea/Basic%20scenario/Practical%20FOFA%20Asset%20Expansion-%20Sidewinder%20APT.md)

[Practical FOFA Asset Expansion: APT-C-23 Android Malware](https://github.com/FofaInfo/Awesome-FOFA/blob/3bd23cfc1e4850584320a5d90529913901396dca/Basic%20scenario/Practical%20FOFA%20Asset%20Expansion-%20APT-C-23%20Android%20Malware.md)

[Practical FOFA Asset Expansion：Ducktail](https://github.com/FofaInfo/Awesome-FOFA/blob/9ff7a1b8e225a0ed93e2776c37deb0d56c26e7bb/Basic%20scenario/Practical%20FOFA%20Asset%20Expansion%EF%BC%9ADucktail.md)

[Practical FOFA Asset Discovery: COLDRIVER](https://github.com/FofaInfo/Awesome-FOFA/blob/f0fdb52c77d81c3cbe4a6dcdb3d59ac735f55991/Basic%20scenario/Practical%20FOFA%20Asset%20Discovery-%20COLDRIVER.md)

## Useful FOFA API Tool

[fofa-py](https://github.com/fofapro/fofa-py/blob/master/docs/README_EN.md)

[fofa_Viewer](https://github.com/wgpsec/fofa_viewer/blob/master/README.en.md)

[fofax](https://github.com/xiecat/fofax/blob/main/README.md)

[gofofa](https://github.com/LubyRuffy/gofofa)

[fofa_search](https://github.com/thebatmanfuture/fofa_search)

## FOFAHub

### Workflow Intro
[Open Site Discovery](https://github.com/FofaInfo/Awesome-FOFA/blob/main/FofaHub/Archive/Unleash%20the%20Power%20of%20Workflow-%20Unleash%20Your%20Creativity%20in%20Open%20Site%20Discovery.md)

[Login Discovery](https://github.com/FofaInfo/Awesome-FOFA/blob/main/FofaHub/Login%20Discovery.md)

[Filter Independent IP](https://github.com/FofaInfo/Awesome-FOFA/blob/main/FofaHub/Filter%20Independent%20IP.md)

[Product Aggregation](https://github.com/FofaInfo/Awesome-FOFA/blob/main/FofaHub/Product%20Aggregation.md)

[AI Finder](https://github.com/FofaInfo/Awesome-FOFA/blob/main/FofaHub/AI%20Finder.md)

## Others

[How did LLM become accomplices to crime?](https://github.com/FofaInfo/Awesome-FOFA/blob/615dd1a7201aa3b2e58b391d7681b598ad976930/Basic%20scenario/How%20did%20LLM%20become%20accomplices%20to%20crime%3F.md)

### Great analysis report

[Detecting Hidden Illegal Online Gambling on .go.id Domains Using Web Scraping Algorithms
](https://journal.universitasbumigora.ac.id/index.php/matrik/article/view/3824/1616)

[Exposing a “Correios” phishing scam with FOFA](https://debugactiveprocess.medium.com/exposing-a-correios-phishing-scam-with-fofa-57cfa375fdeb)

[Analysing a Widespread Microsoft 365 Credential Harvesting Campaign](https://www.bridewell.com/insights/blogs/detail/analysing-widespread-microsoft365-credential-harvesting-campaign)

[Uncovering the “Easy Stealer” Infostealer](https://www.bridewell.com/insights/blogs/detail/uncovering-the-easy-stealer-infostealer)

[HostingHunter Series: CHANG WAY TECHNOLOGIES CO. LIMITED](https://medium.com/@joshuapenny88/hostinghunter-series-chang-way-technologies-co-limited-a9ba4fce0f65)

[Chenlun aka Sinkinto01: A worldwide phishing & carding campaigns provider](https://g0njxa.medium.com/chenlun-a-worldwide-phishing-carding-campaigns-provider-a45c4fed6d1b)

[Traque de l’infrastructure cybercriminelle de l’infostealer RisePro](https://projetfox.com/2023/11/traque-de-linfrastructure-cybercriminelle-de-linfostealer-risepro/)

[New Threat Detected: Inside Our Discovery of the Log4j Campaign and Its XMRig Malware](https://www.uptycs.com/blog/log4j-campaign-xmrig-malware)