The Top 293 Recon Open Source Projects on Github

Awesome Open Source

Awesome Open Source

Combined Topics

Advertising 📦 9

Application Programming Interfaces 📦 120

Applications 📦 181

Artificial Intelligence 📦 72

Blockchain 📦 70

Build Tools 📦 111

Cloud Computing 📦 79

Code Quality 📦 28

Collaboration 📦 30

Command Line Interface 📦 48

Community 📦 81

Companies 📦 60

Compilers 📦 60

Computer Science 📦 74

Configuration Management 📦 39

Content Management 📦 167

Control Flow 📦 197

Data Formats 📦 77

Data Processing 📦 266

Data Storage 📦 132

Economics 📦 60

Frameworks 📦 198

Graphics 📦 103

Hardware 📦 148

Integrated Development Environments 📦 47

Learning Resources 📦 147

Libraries 📦 119

Lists Of Projects 📦 21

Machine Learning 📦 336

Mapping 📦 61

Marketing 📦 15

Mathematics 📦 55

Messaging 📦 97

Networking 📦 304

Operating Systems 📦 84

Operations 📦 120

Package Managers 📦 52

Programming Languages 📦 229

Runtime Environments 📦 96

Science 📦 42

Security 📦 375

Social Media 📦 26

Software Architecture 📦 70

Software Development 📦 68

Software Performance 📦 57

Software Quality 📦 127

Text Editors 📦 45

Text Processing 📦 131

User Interface 📦 310

User Interface Components 📦 465

Version Control 📦 29

Virtualization 📦 68

Web Browsers 📦 38

Web Servers 📦 25

Web User Interface 📦 194

The Top 293 Recon Open Source Projects on Github

Categories > Security > Recon

Theharvester ⭐ 5,851

E-mails, subdomains and names Harvester - OSINT

Amass ⭐ 5,816

In-depth Attack Surface Mapping and Asset Discovery

Oneforall ⭐ 3,749

OneForAll是一款功能强大的子域收集工具

Rengine ⭐ 3,259

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Whatweb ⭐ 3,172

Next generation web scanner

Arjun ⭐ 2,623

HTTP parameter discovery suite.

Discover ⭐ 2,476

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Winpwn ⭐ 1,837

Automation for internal Windows Penetrationtest / AD-Security

Striker ⭐ 1,744

Striker is an offensive information and vulnerability scanner.

Amass ⭐ 1,659

In-depth Attack Surface Mapping and Asset Discovery

Reconftw ⭐ 1,646

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

H8mail ⭐ 1,565

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Cloudfail ⭐ 1,343

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Awesome Asset Discovery ⭐ 1,108

List of Awesome Asset Discovery Resources

Observer_cli ⭐ 1,107

Visualize Erlang/Elixir Nodes On The Command Line

Recondog ⭐ 1,107

Reconnaissance Swiss Army Knife

Gitgot ⭐ 1,030

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Urlhunter ⭐ 988

a recon tool that allows searching on URLs that are exposed via shortener services

Awesome Oneliner Bugbounty ⭐ 987

A collection of awesome one-liner scripts especially for bug bounty tips.

Semi-automatic OSINT framework and package manager

Reconspider ⭐ 924

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Simplyemail ⭐ 791

Email recon made fast and easy, with a framework to build on

Zeus Scanner ⭐ 720

Advanced reconnaissance utility

Git Hound ⭐ 669

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Favfreak ⭐ 664

Making Favicon.ico based Recon Great again !

Reconpi ⭐ 569

ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.

Hosthunter ⭐ 560

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Puredns ⭐ 490

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

Automated network asset, email, and social media profile discovery and cataloguing.

Bigbountyrecon ⭐ 471

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Nullinux ⭐ 464

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

Shotlooter ⭐ 411

a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

Hidden parameters discovery suite

Find emails of Github users

Censys Subdomain Finder ⭐ 344

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

Sitedorks ⭐ 338

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

Network footprint scanner platform. Discover domains and run your custom checks periodically.

Docker Onion Nmap ⭐ 322

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

Osint_team_links ⭐ 313

Links for the OSINT Team

Meerkat ⭐ 306

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

EyeJo是一款自动化资产风险评估平台，可以协助甲方安全人员或乙方安全人员对授权的资产中进行排查，快速发现存在的薄弱点和攻击面。

Recon Pipeline ⭐ 286

An automated target reconnaissance pipeline.

A tool to fastly get all javascript sources/files

Megplus ⭐ 276

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

Reconnote ⭐ 274

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

Generates combination of domain names from the provided input.

Aiodnsbrute ⭐ 266

Python 3.5+ DNS asynchronous brute force utility

Ntlmrecon ⭐ 258

Enumerate information from NTLM authentication enabled web endpoints 🔎

Awesome Cyber Security ⭐ 255

[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.

An advanced tool for email reconnaissance

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration

Autorecon ⭐ 235

Simple shell script for automated domain recognition with some tools

Recon My Way ⭐ 230

This repository created for personal use and added tools from my latest blog post.

Reconness ⭐ 212

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

Xrcross ⭐ 204

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

Url Tracker ⭐ 201

Change monitoring app that checks the content of web pages in different periods.

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

Rock On ⭐ 186

Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.

SIEM Tactics, Techiques, and Procedures

Bbrecon ⭐ 179

Python library and CLI for the Bug Bounty Recon API

Whoishere.py ⭐ 179

WIFI Client Detection - Identify people by assigning a name to a device performing a wireless probe request.

Lazyrecon ⭐ 169

An automated approach to performing recon for bug bounty hunting and penetration testing.

Awesome Bbht ⭐ 165

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Intrec Pack ⭐ 164

Intelligence and Reconnaissance Package/Bundle installer.

Recsech ⭐ 161

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Wprecon ⭐ 157

The official wprecon repository

Gorecon ⭐ 153

Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal

Autosetup ⭐ 148

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

Autoenum ⭐ 138

Automatic Service Enumeration Script

Stardox ⭐ 137

Github stargazers information gathering tool

Blackdragon ⭐ 134

An Adavnced Automation Tool For Web-Recon Developed For Linux Systems

Wordlists ⭐ 129

Infosec Wordlists

Your Google Recon is Now Automated

Fast Amazon S3 bucket enumeration tool for pentesters.

Bash_scripting ⭐ 114

bash scripting thing !

yotter - bash script that performs recon and then uses dirb to discover directories that might lead to information leakage

Cariddi ⭐ 110

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more...

Deksterecon ⭐ 104

Web Application recon automation

Spaces Finder ⭐ 102

A tool to hunt for publicly accessible DigitalOcean Spaces

Urls de-duplication tool for better recon.

Reconky Automated_bash_script ⭐ 95

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Hidden parameters discovery suite

Goaltdns ⭐ 90

A permutation generation tool written in golang

A script to quickly enumerate all websites across all of your organization's networks, store their responses, and query for known web technologies, such as those with zero-day vulnerabilities.

Xposedornot ⭐ 87

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

Sharingan ⭐ 84

Offensive Security recon tool

Bug Hunting ⭐ 82

The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down here 👇👇

SEF is a Subdomain Enumeration Framework that covers passive, active & permuted enumeration

Recon is a script to perform a full recon on a target with the main tools to search for vulnerabilities. Created based on @ofjaaah and @Jhaddix methodologies

Sigurlfind3r ⭐ 76

A passive reconnaissance tool for known URLs discovery - it gathers a list of URLs passively using various online sources.

Concurrent Rapid7 FDNS dataset parser

Reconcat ⭐ 69

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

Querytool ⭐ 65

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Offensiveclouddistribution ⭐ 62

Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.

Gitmonitor ⭐ 61

One way to continuously monitor sensitive information that could be exposed on Github

1-100 of 293 projects

Related Projects

Python Recon Projects (125)

Reconnaissance Recon Projects (111)

Bugbounty Recon Projects (104)

Osint Recon Projects (64)

Shell Recon Projects (59)

Hacking Recon Projects (55)

Pentesting Recon Projects (46)

Python Reconnaissance Recon Projects (42)

Python Bugbounty Recon Projects (41)

Security Recon Projects (40)

Go Recon Projects (38)

Advertising 📦 9

Application Programming Interfaces 📦 120

Applications 📦 181

Artificial Intelligence 📦 72

Blockchain 📦 70

Build Tools 📦 111

Cloud Computing 📦 79

Code Quality 📦 28

Collaboration 📦 30

Command Line Interface 📦 48

Community 📦 81

Companies 📦 60

Compilers 📦 60

Computer Science 📦 74

Configuration Management 📦 39

Content Management 📦 167

Control Flow 📦 197

Data Formats 📦 77

Data Processing 📦 266

Data Storage 📦 132

Economics 📦 60

Frameworks 📦 198

Graphics 📦 103

Hardware 📦 148

Integrated Development Environments 📦 47

Learning Resources 📦 147

Libraries 📦 119

Lists Of Projects 📦 21

Machine Learning 📦 336

Mapping 📦 61

Marketing 📦 15

Mathematics 📦 55

Messaging 📦 97

Networking 📦 304

Operating Systems 📦 84

Operations 📦 120

Package Managers 📦 52

Programming Languages 📦 229

Runtime Environments 📦 96

Science 📦 42

Security 📦 375

Social Media 📦 26

Software Architecture 📦 70

Software Development 📦 68

Software Performance 📦 57

Software Quality 📦 127

Text Editors 📦 45

Text Processing 📦 131

User Interface 📦 310

User Interface Components 📦 465

Version Control 📦 29

Virtualization 📦 68

Web Browsers 📦 38

Web Servers 📦 25

Web User Interface 📦 194

"GitHub" is a registered trademark of GitHub, Inc. Awesome Open Source is not affiliated with GitHub.

All non readme contents or Github based topics or project metadata copyright Awesome Open Source 2018-2021