Awesome Open Source
Awesome Open Source
Combined Topics
reconnaissance x
Advertising πŸ“¦Β 9
All Projects
Application Programming Interfaces πŸ“¦Β 120
Applications πŸ“¦Β 181
Artificial Intelligence πŸ“¦Β 72
Blockchain πŸ“¦Β 70
Build Tools πŸ“¦Β 111
Cloud Computing πŸ“¦Β 79
Code Quality πŸ“¦Β 28
Collaboration πŸ“¦Β 30
Command Line Interface πŸ“¦Β 48
Community πŸ“¦Β 81
Companies πŸ“¦Β 60
Compilers πŸ“¦Β 60
Computer Science πŸ“¦Β 74
Configuration Management πŸ“¦Β 39
Content Management πŸ“¦Β 167
Control Flow πŸ“¦Β 197
Data Formats πŸ“¦Β 77
Data Processing πŸ“¦Β 266
Data Storage πŸ“¦Β 132
Economics πŸ“¦Β 60
Frameworks πŸ“¦Β 198
Games πŸ“¦Β 122
Graphics πŸ“¦Β 103
Hardware πŸ“¦Β 148
Integrated Development Environments πŸ“¦Β 47
Learning Resources πŸ“¦Β 147
Legal πŸ“¦Β 28
Libraries πŸ“¦Β 119
Lists Of Projects πŸ“¦Β 21
Machine Learning πŸ“¦Β 336
Mapping πŸ“¦Β 61
Marketing πŸ“¦Β 15
Mathematics πŸ“¦Β 55
Media πŸ“¦Β 228
Messaging πŸ“¦Β 97
Networking πŸ“¦Β 304
Operating Systems πŸ“¦Β 84
Operations πŸ“¦Β 120
Package Managers πŸ“¦Β 52
Programming Languages πŸ“¦Β 229
Runtime Environments πŸ“¦Β 96
Science πŸ“¦Β 42
Security πŸ“¦Β 375
Social Media πŸ“¦Β 26
Software Architecture πŸ“¦Β 70
Software Development πŸ“¦Β 68
Software Performance πŸ“¦Β 57
Software Quality πŸ“¦Β 127
Text Editors πŸ“¦Β 45
Text Processing πŸ“¦Β 131
User Interface πŸ“¦Β 310
User Interface Components πŸ“¦Β 465
Version Control πŸ“¦Β 29
Virtualization πŸ“¦Β 68
Web Browsers πŸ“¦Β 38
Web Servers πŸ“¦Β 25
Web User Interface πŸ“¦Β 194

The Top 327 Reconnaissance Open Source Projects on Github

CategoriesΒ >Β SecurityΒ >Β Reconnaissance
Sherlock ⭐ 26,757
πŸ”Ž Hunt down social media accounts by username across social networks
Social Analyzer ⭐ 8,190
API, CLI & Web App for analyzing & finding a person's profile across +900 social media \ websites (Detections are updated regularly)
Spiderfoot ⭐ 6,546
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Theharvester ⭐ 5,842
E-mails, subdomains and names Harvester - OSINT
Phoneinfoga ⭐ 5,418
Information gathering & OSINT framework for phone numbers
Aquatone ⭐ 4,074
A Tool for Domain Flyovers
Rengine ⭐ 3,239
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Osmedeus ⭐ 3,103
Fully automated offensive security framework for reconnaissance and vulnerability scanning
Osint Framework ⭐ 3,049
OSINT Framework
Discover ⭐ 2,477
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
Raccoon ⭐ 2,145
A high performance offensive security tool for reconnaissance and vulnerability scanning
Massdns ⭐ 1,989
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
Seeker ⭐ 1,824
Accurately Locate Smartphones using Social Engineering
Hackvault ⭐ 1,404
A container repository for my public web hacks!
Tidos Framework ⭐ 1,386
The Offensive Manual Web Application Penetration Testing Framework.
Allaboutbugbounty ⭐ 1,240
All about bug bounty (bypasses, payloads, and etc)
Fierce ⭐ 1,127
A DNS reconnaissance tool for locating non-contiguous IP space.
Awesome Asset Discovery ⭐ 1,108
List of Awesome Asset Discovery Resources
Intrigue Core ⭐ 1,075
Discover Your Attack Surface!
Sudomy ⭐ 1,012
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Gitgot ⭐ 1,003
Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
Sn0int ⭐ 969
Semi-automatic OSINT framework and package manager
Finalrecon ⭐ 963
The Last Web Recon Tool You'll Need
Rapidscan ⭐ 896
πŸ†• The Multi-Tool Web Vulnerability Scanner.
Reconspider ⭐ 892
πŸ”Ž Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Attacksurfacemapper ⭐ 733
AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.
Sublert ⭐ 687
Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
Git Hound ⭐ 669
Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.
Favfreak ⭐ 664
Making Favicon.ico based Recon Great again !
Shuffledns ⭐ 635
MassDNS wrapper written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.
Gasmask ⭐ 617
Information gathering tool - OSINT
Hosthunter ⭐ 560
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Odin ⭐ 482
Automated network asset, email, and social media profile discovery and cataloguing.
Bigbountyrecon ⭐ 471
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
Maryam ⭐ 462
Maryam: Open-source Intelligence(OSINT) Framework
Witnessme ⭐ 445
Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.
Natlas ⭐ 416
Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.
Shotlooter ⭐ 411
a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc
Public Bugbounty Programs ⭐ 395
Community curated list of public bug bounty and responsible disclosure programs.
3klcon ⭐ 388
Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.
Badkarma ⭐ 356
network reconnaissance toolkit
Garud ⭐ 355
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
Pywerview ⭐ 348
A (partial) Python rewriting of PowerSploit's PowerView
Osint_tips ⭐ 294
OSINT
Cloudscraper ⭐ 290
CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
Recon Pipeline ⭐ 286
An automated target reconnaissance pipeline.
Getjs ⭐ 280
A tool to fastly get all javascript sources/files
Megplus ⭐ 276
Automated reconnaissance wrapper β€” TomNomNom's meg on steroids. [DEPRECATED]
Hawkscan ⭐ 274
Security Tool for Reconnaissance and Information Gathering on a website. (python 3.x)
Procspy ⭐ 272
Python tool that monitors and logs user-run commands on a Linux system for either offensive or defensive purposes..
Ntlmrecon ⭐ 258
Enumerate information from NTLM authentication enabled web endpoints πŸ”Ž
Sarenka ⭐ 253
OSINT tool - gets data from services like shodan, censys etc. in one app
Scilla ⭐ 236
Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration
Autorecon ⭐ 235
Simple shell script for automated domain recognition with some tools
Recon My Way ⭐ 230
This repository created for personal use and added tools from my latest blog post.
Pdlist ⭐ 211
A passive subdomain finder
Asnlookup ⭐ 207
Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
Url Tracker ⭐ 201
Change monitoring app that checks the content of web pages in different periods.
Yar ⭐ 199
Yar is a tool for plunderin' organizations, users and/or repositories.
I See You ⭐ 188
ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.
Pyiris Backdoor ⭐ 187
PyIris is a modular remote access trojan toolkit written completely in python targeting Windows and Linux systems.
Gitem ⭐ 182
A Github organization reconnaissance tool.
Lazyrecon ⭐ 169
An automated approach to performing recon for bug bounty hunting and penetration testing.
Awesome Bbht ⭐ 165
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Intrec Pack ⭐ 164
Intelligence and Reconnaissance Package/Bundle installer.
Bugbountyscanner ⭐ 162
A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
Recsech ⭐ 161
Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .
Rebel Framework ⭐ 160
Advanced and easy to use penetration testing framework πŸ’£πŸ”Ž
Nebula ⭐ 157
Cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps Components.
Autosetup ⭐ 148
Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.
Sherlock Js ⭐ 140
Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock
Asnip ⭐ 126
ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
Cariddi ⭐ 110
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more...
Mqtt Pwn ⭐ 105
MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and security assessment operations.
Ntlm_challenger ⭐ 104
Parse NTLM challenge messages over HTTP and SMB
Spaces Finder ⭐ 102
A tool to hunt for publicly accessible DigitalOcean Spaces
Investigo ⭐ 99
πŸ”Ž Find usernames and download their data across social media.
Certeagle ⭐ 98
Weaponizing Live CT logs for automated monitoring ofΒ assets
Sourcewolf ⭐ 97
Amazingly fast response crawler to find juicy stuff in the source code! 😎πŸ”₯
Uddup ⭐ 96
Urls de-duplication tool for better recon.
Reconky Automated_bash_script ⭐ 95
Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
Keye ⭐ 90
Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.
Webstor ⭐ 87
A script to quickly enumerate all websites across all of your organization's networks, store their responses, and query for known web technologies, such as those with zero-day vulnerabilities.
Lazyrecon ⭐ 87
Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.
Xposedornot ⭐ 87
XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.
Bass ⭐ 86
Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers to your "resolver.txt"
Intelspy ⭐ 83
Perform automated network reconnaissance scans
Subrake ⭐ 81
A Subdomain Enumeration and Validation tool for Bug Bounty and Pentesters.
Asnrecon ⭐ 79
ASN reconnaissance script
Sigurlfind3r ⭐ 76
A passive reconnaissance tool for known URLs discovery - it gathers a list of URLs passively using various online sources.
Karma_v2 ⭐ 74
β‘·β ‚πš”πšŠπš›πš–πšŠ 𝚟𝟸⠐Ⓘ is a Passive Open Source Intelligence (OSINT) Automated Rconnaissance (framework)
Gotator ⭐ 71
Gotator is a tool to generate DNS wordlists through permutations.
Geo Recon ⭐ 71
An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.
Deadtrap ⭐ 69
An OSINT tool to gather information about the real owner of a phone number
Querytool ⭐ 65
Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.
Chameleonminilivedebugger ⭐ 65
Live logger and GUI tool for the Chameleon Mini developed for Android OS in Java.
Bing Ip2hosts ⭐ 64
bingip2hosts is a Bing.com web scraper that discovers websites by IP address
Gitmonitor ⭐ 61
One way to continuously monitor sensitive information that could be exposed on Github
Reconcat ⭐ 60
A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.
Recon ⭐ 60
NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.
1-100 of 327 projects

Related Projects

Python Reconnaissance Projects (152)
Osint Reconnaissance Projects (114)
Reconnaissance Recon Projects (103)
Bugbounty Reconnaissance Projects (74)
Reconnaissance Information Gathering Projects (59)
Python Osint Reconnaissance Projects (57)
Pentesting Reconnaissance Projects (55)
Shell Reconnaissance Projects (48)
Hacking Reconnaissance Projects (45)
Advertising πŸ“¦Β 9
All Projects
Application Programming Interfaces πŸ“¦Β 120
Applications πŸ“¦Β 181
Artificial Intelligence πŸ“¦Β 72
Blockchain πŸ“¦Β 70
Build Tools πŸ“¦Β 111
Cloud Computing πŸ“¦Β 79
Code Quality πŸ“¦Β 28
Collaboration πŸ“¦Β 30
Command Line Interface πŸ“¦Β 48
Community πŸ“¦Β 81
Companies πŸ“¦Β 60
Compilers πŸ“¦Β 60
Computer Science πŸ“¦Β 74
Configuration Management πŸ“¦Β 39
Content Management πŸ“¦Β 167
Control Flow πŸ“¦Β 197
Data Formats πŸ“¦Β 77
Data Processing πŸ“¦Β 266
Data Storage πŸ“¦Β 132
Economics πŸ“¦Β 60
Frameworks πŸ“¦Β 198
Games πŸ“¦Β 122
Graphics πŸ“¦Β 103
Hardware πŸ“¦Β 148
Integrated Development Environments πŸ“¦Β 47
Learning Resources πŸ“¦Β 147
Legal πŸ“¦Β 28
Libraries πŸ“¦Β 119
Lists Of Projects πŸ“¦Β 21
Machine Learning πŸ“¦Β 336
Mapping πŸ“¦Β 61
Marketing πŸ“¦Β 15
Mathematics πŸ“¦Β 55
Media πŸ“¦Β 228
Messaging πŸ“¦Β 97
Networking πŸ“¦Β 304
Operating Systems πŸ“¦Β 84
Operations πŸ“¦Β 120
Package Managers πŸ“¦Β 52
Programming Languages πŸ“¦Β 229
Runtime Environments πŸ“¦Β 96
Science πŸ“¦Β 42
Security πŸ“¦Β 375
Social Media πŸ“¦Β 26
Software Architecture πŸ“¦Β 70
Software Development πŸ“¦Β 68
Software Performance πŸ“¦Β 57
Software Quality πŸ“¦Β 127
Text Editors πŸ“¦Β 45
Text Processing πŸ“¦Β 131
User Interface πŸ“¦Β 310
User Interface Components πŸ“¦Β 465
Version Control πŸ“¦Β 29
Virtualization πŸ“¦Β 68
Web Browsers πŸ“¦Β 38
Web Servers πŸ“¦Β 25
Web User Interface πŸ“¦Β 194
"GitHub" is a registered trademark of GitHub, Inc. Awesome Open Source is not affiliated with GitHub.

All non readme contents or Github based topics or project metadata copyright Awesome Open SourceΒ 2018-2021