Awesome Open Source

Programming Languages

Search results for osint recon

131 search results found

Amass ⭐ 11,124

In-depth attack surface mapping and asset discovery

Spiderfoot ⭐ 11,035

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Theharvester ⭐ 10,249

E-mails, subdomains and names Harvester - OSINT

Red Teaming Toolkit ⭐ 8,230

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Oneforall ⭐ 7,315

OneForAll是一款功能强大的子域收集工具

Rengine ⭐ 6,446

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Reconftw ⭐ 5,204

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Hakrawler ⭐ 4,120

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

H8mail ⭐ 3,476

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Discover ⭐ 3,238

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

A recursive internet scanner for hackers.

Uncover ⭐ 2,149

Quickly discover exposed hosts on the internet using multiple search engines.

Sn0int ⭐ 1,749

Semi-automatic OSINT framework and package manager

Awesome Asset Discovery ⭐ 1,749

List of Awesome Asset Discovery Resources

Reconspider ⭐ 1,729

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Redteam Offensivesecurity ⭐ 1,630

Tools & Interesting Things for RedTeam Ops

Gitgot ⭐ 1,384

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Urlhunter ⭐ 1,384

a recon tool that allows searching on URLs that are exposed via shortener services

Cariddi ⭐ 1,228

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

Goofuzz ⭐ 1,119

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server

Metabigor ⭐ 1,087

OSINT tools and more but without API ke

Inventory ⭐ 1,019

Asset inventory of over 800 public bug bounty programs.

Favfreak ⭐ 965

Making Favicon.ico based Recon Great again !

Hosthunter ⭐ 826

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Maryam: Open-source Intelligence(OSINT) Framework

Sitedorks ⭐ 719

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

OSINT Project. Collect information from a mail. Gather. Profile. Timeline.

Datasurgeon ⭐ 630

Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers and a lot More From Text

Automated network asset, email, and social media profile discovery and cataloguing.

Go CLI and Library for quickly mapping organization network ranges using ASN information.

Infoooze ⭐ 590

A OSINT tool which helps you to quickly find information effectively. All you need is to input and it will take take care of rest.

Censys Subdomain Finder ⭐ 589

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

Aiodnsbrute ⭐ 579

Python 3.5+ DNS asynchronous brute force utility

All in One Recon Tool for Bug Bounty

Find emails of Github users

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Flutter Spy ⭐ 480

Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.

Bigbountyrecon ⭐ 471

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

OSINT Template Engine

Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.

Mailcat ⭐ 399

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Ntlmrecon ⭐ 397

Enumerate information from NTLM authentication enabled web endpoints 🔎

Network footprint scanner platform. Discover domains and run your custom checks periodically.

Poastal ⭐ 366

Poastal - the Email OSINT tool

Osint_team_links ⭐ 313

Links for the OSINT Team

Osint Scraper ⭐ 266

Awesome Cyber Security ⭐ 255

[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.

An advanced tool for email reconnaissance

Bucketloot ⭐ 252

BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.

Arsenal ⭐ 247

Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bounty

🦚 A web-app pentesting suite written in rust .

OSINT Tool on Twitter and Instagram.

Porch Pirate ⭐ 215

Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitation of API endpoints and secrets committed to workspaces, collections, requests, users and teams. Porch Pirate can be used as a client or be incorporated into your own applications.

Dorks_hunter ⭐ 198

Simple Google Dorks search tool

Bbrecon ⭐ 179

Python library and CLI for the Bug Bounty Recon API

Reconky Automated_bash_script ⭐ 170

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Geo Recon ⭐ 165

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

Intrec Pack ⭐ 164

Intelligence and Reconnaissance Package/Bundle installer.

Lure - User Recon Automation for GoPhish

Infohound ⭐ 130

InfoHound is an OSINT to extract a large amount of data given a web domain name.

Web Hacking Toolkit ⭐ 127

A web hacking toolkit (docker image).

Querytool ⭐ 117

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Insiders ⭐ 111

Archive of Potential Insider Threats

Traxosint ⭐ 109

Osint tool for track ip adress

Spaces Finder ⭐ 102

A tool to hunt for publicly accessible DigitalOcean Spaces

Hakip2host ⭐ 99

hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.

Osinteye ⭐ 91

Username enumeration & reconnaisance suite

Bevigil Osint Cli ⭐ 88

bevigil-cli provides a unified command line interface and python library for using BeVigil OSINT API.

Xposedornot ⭐ 87

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

SubEvil is an advanced open source intelligence framework (OSINT) for grouping subdomains.

A simple tool that helps to find assets/domains based on the Google Analytics ID.

Automate recon for red team assessments.

Recon365 ⭐ 77

Gather information from an email address connected to Office 365

Bugradar ⭐ 72

Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.

Web Recon ⭐ 71

All About Web Recon & OSINT

spk aka spritzgebaeck: A small OSINT/Recon tool to find CIDRs that belong to a specific organization.

Enumerepo ⭐ 60

List all public repositories for (valid) GitHub usernames

Osint Tools ⭐ 56

👀 Some of my favorite OSINT tools.

Osintforpentests ⭐ 55

Slides from my ShellCon Talk, OSINT for Pen Tests, given 10/19.

Gitosint_bot ⭐ 55

GitOSINT: The OSINT Powerhouse for Discord. The go-to Discord bot for Open Source Intelligence (OSINT).

Github Logs ⭐ 53

Extracting OSINT Insights from 15TB of GitHub Event Logs

Osint Recon ⭐ 51

Open source intelligence tools and resources

Sifter - All purpose penetration testing op-center

Monitoring the Cloud Landscape

Osint Tools ⭐ 45

Resources I use for OSINT

Osint Tools ⭐ 42

OSINT tools can be used for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.

Phisherprice ⭐ 38

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

Pentesting Resources ⭐ 37

Resources, repos and scripts for pentesters and bug bounty.

Censys Recon Ng ⭐ 36

recon-ng modules for Censys

Webhackurls ⭐ 34

Simple python OSINT tool for urls recon thanks to the waybackmachine.

Pasv Agrsv ⭐ 34

Passive recon / OSINT automation script

Burp Ntlm Challenge Decoder ⭐ 33

Burp extension to decode NTLM SSP headers and extract domain/host information

Thorndyke ⭐ 32

Lightweight username enumeration tool that checks the availability of a specified username on over 200 websites.

Social-Media OSINT tool - gather info on users across multiple platforms; easily extensible by design. 📷

Revwhoix ⭐ 28

A simple utility to perform reverse WHOIS lookups using whoisxml API

Red Team Tools ⭐ 27

Simple Python tool to check if there is an Office 365 instance linked to a domain.

Domaindouche ⭐ 25

OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.

Initiate external reconnaissance, parse Nessus xml reports and more.

Related Searches

Python Osint (666)

Python Recon (372)

1-100 of 131 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.