Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for osint reconnaissance
osint
x
reconnaissance
x
167 search results found
Sherlock
⭐
46,337
🔎 Hunt down social media accounts by username across social networks
Phoneinfoga
⭐
11,939
Information gathering framework for phone numbers
Social Analyzer
⭐
10,841
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
Theharvester
⭐
10,249
E-mails, subdomains and names Harvester - OSINT
Subfinder
⭐
9,210
Fast passive subdomain enumeration tool.
Red Teaming Toolkit
⭐
8,230
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Osint Framework
⭐
6,540
OSINT Framework
Rengine
⭐
6,446
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Reconftw
⭐
5,204
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Osmedeus
⭐
5,076
A Workflow Engine for Offensive Security
Aquatone
⭐
4,369
A Tool for Domain Flyovers
Hakrawler
⭐
4,120
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Discover
⭐
3,238
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
Raccoon
⭐
2,928
A high performance offensive security tool for reconnaissance and vulnerability scanning
Uncover
⭐
2,149
Quickly discover exposed hosts on the internet using multiple search engines.
Awesome Asset Discovery
⭐
1,749
List of Awesome Asset Discovery Resources
Sn0int
⭐
1,749
Semi-automatic OSINT framework and package manager
Tidos Framework
⭐
1,732
The Offensive Manual Web Application Penetration Testing Framework.
Reconspider
⭐
1,729
🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Gitgot
⭐
1,332
Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
Attacksurfacemapper
⭐
1,230
AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.
Cariddi
⭐
1,228
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
Intrigue Core
⭐
1,205
Discover Your Attack Surface!
Fbi Tools
⭐
1,153
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
Goofuzz
⭐
1,119
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
Metabigor
⭐
1,087
OSINT tools and more but without API ke
Inventory
⭐
1,019
Asset inventory of over 800 public bug bounty programs.
Favfreak
⭐
965
Making Favicon.ico based Recon Great again !
Hosthunter
⭐
826
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Maryam
⭐
807
Maryam: Open-source Intelligence(OSINT) Framework
Sitedorks
⭐
719
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.
Witnessme
⭐
696
Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.
Karma_v2
⭐
630
⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)
Datasurgeon
⭐
630
Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers and a lot More From Text
Frogy
⭐
622
My subdomain enumeration script. It's unique in the way it is built upon.
Gasmask
⭐
617
Information gathering tool - OSINT
Odin
⭐
609
Automated network asset, email, and social media profile discovery and cataloguing.
Aort
⭐
556
All in One Recon Tool for Bug Bounty
Sarenka
⭐
533
OSINT tool - gets data from services like shodan, censys etc. in one app
Osintbuddy
⭐
498
Node graphs, OSINT data mining, and plugins. Connect unstructured and public data for transformative insights
Xurlfind3r
⭐
485
A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.
Flutter Spy
⭐
480
Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.
Bigbountyrecon
⭐
471
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
Ote
⭐
462
OSINT Template Engine
Dome
⭐
412
Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.
Mailcat
⭐
399
Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬
Ntlmrecon
⭐
397
Enumerate information from NTLM authentication enabled web endpoints 🔎
Offensive Osint Tools
⭐
373
OffSec OSINT Pentest/RedTeam Tools
Phoneinfoga
⭐
370
script to search for data about phone numbers
Awesome Cybersec Resources
⭐
314
An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)
Satintel
⭐
299
SatIntel is an OSINT tool for Satellites 🛰. Extract satellite telemetry, receive orbital predictions, and parse TLEs 🔭
Uscrapper
⭐
298
Uscrapper 2.0, a powerful OSINT webscraper for personal data collection. Uscrapper uses web scraping to extract email IDs, social-media links, geolocations, phone numbers, and usernames from webpages, supports multithreading, has advanced Anti-webscraping bypassing modules, supports webcrawling to scrape from various sublinks within the same domain
Osint Cheat Sheet
⭐
293
OSINT cheat sheet, list OSINT tools, dataset, article, book and OSINT tips
Phomber
⭐
255
[PH0MBER]: An open source infomation grathering & reconnaissance framework!
Buster
⭐
254
An advanced tool for email reconnaissance
Bucketloot
⭐
252
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
Arsenal
⭐
247
Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bounty
Pdlist
⭐
236
A passive subdomain finder
Yar
⭐
227
Yar is a tool for plunderin' organizations, users and/or repositories.
Manuka
⭐
215
A modular OSINT honeypot for blue teamers
N0kovo_subdomains
⭐
214
An extremely effective subdomain wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.
Subrake
⭐
211
🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).
Eyes
⭐
203
🕵️ Email osint tool
Investigo
⭐
191
🔎 Find usernames and download their data across social media.
I See You
⭐
188
ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.
Asnip
⭐
184
ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
Gitem
⭐
182
A Github organization reconnaissance tool.
Sagemode
⭐
178
👀Sagemode: Track and Unveil Online identities across social media platforms🕵️♂️
Reconky Automated_bash_script
⭐
170
Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
Geo Recon
⭐
165
An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.
Intrec Pack
⭐
164
Intelligence and Reconnaissance Package/Bundle installer.
Skytrack
⭐
153
skytrack is a planespotting and aircraft OSINT tool made using Python 🛩🔍
Webosint
⭐
148
W3b0s1nt (WebOSINT) is a Python tool/script for passive Domain Intelligence gathering.
Knockknock
⭐
147
A simple reverse whois lookup tool which returns a list of domains owned by people or companies
Sherlock Js
⭐
140
Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock
Bitcrook
⭐
139
Open-Source Intelligence Apparatus
Sourcewolf
⭐
137
Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥
Ashok
⭐
133
Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .
Web Hacking Toolkit
⭐
127
A web hacking toolkit (docker image).
Querytool
⭐
117
Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.
Insiders
⭐
111
Archive of Potential Insider Threats
Phoneinfoga
⭐
108
PhoneInfoga is one of the most advanced tools to scan phone numbers using only free resources.
Foxyrecon
⭐
107
A Firefox add-on for OSINT investigations
Spaces Finder
⭐
102
A tool to hunt for publicly accessible DigitalOcean Spaces
Certeagle
⭐
98
Weaponizing Live CT logs for automated monitoring of assets
Daprofiler
⭐
97
DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.
Smwyg Show Me What You Got
⭐
95
This tool allows you to perform OSINT and reconnaissance on an organisation or an individual. It allows one to search 1.4 Billion clear text credentials which was dumped as part of BreachCompilation leak. This database makes finding passwords faster and easier than ever before.
Xsubfind3r
⭐
92
A command-line interface (CLI) based passive subdomain discovery utility. It is designed to efficiently identify known subdomains of given domains by tapping into a multitude of curated online passive sources.
Osinteye
⭐
91
Username enumeration & reconnaisance suite
Bing Ip2hosts
⭐
91
bingip2hosts is a Bing.com web scraper that discovers websites by IP address
Lazyrecon
⭐
87
Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.
Xposedornot
⭐
87
XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.
Argos
⭐
86
This script will automatically set up an OSINT workstation starting from a Ubuntu OS.
Graphinder
⭐
86
🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
Shodan
⭐
81
yet another Shodan.io client
Udon
⭐
80
A simple tool that helps to find assets/domains based on the Google Analytics ID.
Thoth
⭐
79
Automate recon for red team assessments.
Secator
⭐
77
Secator - the pentester's swiss knife
Uscan
⭐
69
uscan is an automated vulnerability scanner that streamlines the process of website hacking, making it faster and more efficient than ever before.
Spk
⭐
69
spk aka spritzgebaeck: A small OSINT/Recon tool to find CIDRs that belong to a specific organization.
1-100 of 167 search results
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.