Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for osint recon
osint
x
recon
x
131 search results found
Amass
⭐
11,124
In-depth attack surface mapping and asset discovery
Spiderfoot
⭐
11,035
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Theharvester
⭐
10,249
E-mails, subdomains and names Harvester - OSINT
Red Teaming Toolkit
⭐
8,230
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Oneforall
⭐
7,315
OneForAll是一款功能强大的子域收集工具
Rengine
⭐
6,446
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Reconftw
⭐
5,204
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Hakrawler
⭐
4,120
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
H8mail
⭐
3,476
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Discover
⭐
3,238
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
Bbot
⭐
3,155
A recursive internet scanner for hackers.
Uncover
⭐
2,149
Quickly discover exposed hosts on the internet using multiple search engines.
Sn0int
⭐
1,749
Semi-automatic OSINT framework and package manager
Awesome Asset Discovery
⭐
1,749
List of Awesome Asset Discovery Resources
Reconspider
⭐
1,729
🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Redteam Offensivesecurity
⭐
1,630
Tools & Interesting Things for RedTeam Ops
Gitgot
⭐
1,384
Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
Urlhunter
⭐
1,384
a recon tool that allows searching on URLs that are exposed via shortener services
Cariddi
⭐
1,228
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
Goofuzz
⭐
1,119
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
Asn
⭐
1,095
ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server
Metabigor
⭐
1,087
OSINT tools and more but without API ke
Inventory
⭐
1,019
Asset inventory of over 800 public bug bounty programs.
Favfreak
⭐
965
Making Favicon.ico based Recon Great again !
Hosthunter
⭐
826
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Maryam
⭐
807
Maryam: Open-source Intelligence(OSINT) Framework
Sitedorks
⭐
719
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.
Iky
⭐
719
OSINT Project. Collect information from a mail. Gather. Profile. Timeline.
Datasurgeon
⭐
630
Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers and a lot More From Text
Odin
⭐
609
Automated network asset, email, and social media profile discovery and cataloguing.
Asnmap
⭐
609
Go CLI and Library for quickly mapping organization network ranges using ASN information.
Infoooze
⭐
590
A OSINT tool which helps you to quickly find information effectively. All you need is to input and it will take take care of rest.
Censys Subdomain Finder
⭐
589
⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
Aiodnsbrute
⭐
579
Python 3.5+ DNS asynchronous brute force utility
Aort
⭐
556
All in One Recon Tool for Bug Bounty
Zen
⭐
523
Find emails of Github users
Vajra
⭐
511
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Flutter Spy
⭐
480
Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.
Bigbountyrecon
⭐
471
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
Ote
⭐
462
OSINT Template Engine
Dome
⭐
412
Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.
Mailcat
⭐
399
Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬
Ntlmrecon
⭐
397
Enumerate information from NTLM authentication enabled web endpoints 🔎
Pulsar
⭐
396
Network footprint scanner platform. Discover domains and run your custom checks periodically.
Poastal
⭐
366
Poastal - the Email OSINT tool
Osint_team_links
⭐
313
Links for the OSINT Team
Osint Scraper
⭐
266
Social Recon
Awesome Cyber Security
⭐
255
[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.
Buster
⭐
254
An advanced tool for email reconnaissance
Bucketloot
⭐
252
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
Arsenal
⭐
247
Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bounty
Kanha
⭐
235
🦚 A web-app pentesting suite written in rust .
Terra
⭐
232
OSINT Tool on Twitter and Instagram.
Porch Pirate
⭐
215
Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitation of API endpoints and secrets committed to workspaces, collections, requests, users and teams. Porch Pirate can be used as a client or be incorporated into your own applications.
Dorks_hunter
⭐
198
Simple Google Dorks search tool
Bbrecon
⭐
179
Python library and CLI for the Bug Bounty Recon API
Reconky Automated_bash_script
⭐
170
Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
Geo Recon
⭐
165
An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.
Intrec Pack
⭐
164
Intelligence and Reconnaissance Package/Bundle installer.
Lure
⭐
146
Lure - User Recon Automation for GoPhish
Infohound
⭐
130
InfoHound is an OSINT to extract a large amount of data given a web domain name.
Web Hacking Toolkit
⭐
127
A web hacking toolkit (docker image).
Querytool
⭐
117
Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.
Insiders
⭐
111
Archive of Potential Insider Threats
Traxosint
⭐
109
Osint tool for track ip adress
Spaces Finder
⭐
102
A tool to hunt for publicly accessible DigitalOcean Spaces
Hakip2host
⭐
99
hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.
Osinteye
⭐
91
Username enumeration & reconnaisance suite
Bevigil Osint Cli
⭐
88
bevigil-cli provides a unified command line interface and python library for using BeVigil OSINT API.
Xposedornot
⭐
87
XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.
Subevil
⭐
85
SubEvil is an advanced open source intelligence framework (OSINT) for grouping subdomains.
Udon
⭐
80
A simple tool that helps to find assets/domains based on the Google Analytics ID.
Thoth
⭐
79
Automate recon for red team assessments.
Recon365
⭐
77
Gather information from an email address connected to Office 365
Bugradar
⭐
72
Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.
Web Recon
⭐
71
All About Web Recon & OSINT
Spk
⭐
69
spk aka spritzgebaeck: A small OSINT/Recon tool to find CIDRs that belong to a specific organization.
Enumerepo
⭐
60
List all public repositories for (valid) GitHub usernames
Osint Tools
⭐
56
👀 Some of my favorite OSINT tools.
Osintforpentests
⭐
55
Slides from my ShellCon Talk, OSINT for Pen Tests, given 10/19.
Gitosint_bot
⭐
55
GitOSINT: The OSINT Powerhouse for Discord. The go-to Discord bot for Open Source Intelligence (OSINT).
Github Logs
⭐
53
Extracting OSINT Insights from 15TB of GitHub Event Logs
Osint Recon
⭐
51
Open source intelligence tools and resources
Sifter
⭐
49
Sifter - All purpose penetration testing op-center
Cloud
⭐
47
Monitoring the Cloud Landscape
Osint Tools
⭐
45
Resources I use for OSINT
Osint Tools
⭐
42
OSINT tools can be used for Information gathering, Cybersecurity, Reverse searching, bugbounty, trust and safety, red team oprations and more.
Phisherprice
⭐
38
All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.
Pentesting Resources
⭐
37
Resources, repos and scripts for pentesters and bug bounty.
Censys Recon Ng
⭐
36
recon-ng modules for Censys
Webhackurls
⭐
34
Simple python OSINT tool for urls recon thanks to the waybackmachine.
Pasv Agrsv
⭐
34
Passive recon / OSINT automation script
Burp Ntlm Challenge Decoder
⭐
33
Burp extension to decode NTLM SSP headers and extract domain/host information
Thorndyke
⭐
32
Lightweight username enumeration tool that checks the availability of a specified username on over 200 websites.
D4v1d
⭐
29
Social-Media OSINT tool - gather info on users across multiple platforms; easily extensible by design. 📷
Revwhoix
⭐
28
A simple utility to perform reverse WHOIS lookups using whoisxml API
Red Team Tools
⭐
27
O365chk
⭐
27
Simple Python tool to check if there is an Office 365 instance linked to a domain.
Domaindouche
⭐
25
OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.
Gorecon
⭐
24
Initiate external reconnaissance, parse Nessus xml reports and more.
Related Searches
Python Osint (666)
Python Recon (372)
1-100 of 131 search results
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.