Awesome Open Source

Programming Languages

Search results for osint reconnaissance

reconnaissance x

167 search results found

Sherlock ⭐ 46,337

🔎 Hunt down social media accounts by username across social networks

Phoneinfoga ⭐ 11,939

Information gathering framework for phone numbers

Social Analyzer ⭐ 10,841

API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites

Theharvester ⭐ 10,249

E-mails, subdomains and names Harvester - OSINT

Subfinder ⭐ 9,210

Fast passive subdomain enumeration tool.

Red Teaming Toolkit ⭐ 8,230

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Osint Framework ⭐ 6,540

OSINT Framework

Rengine ⭐ 6,446

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Reconftw ⭐ 5,204

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Osmedeus ⭐ 5,076

A Workflow Engine for Offensive Security

Aquatone ⭐ 4,369

A Tool for Domain Flyovers

Hakrawler ⭐ 4,120

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

Discover ⭐ 3,238

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

Raccoon ⭐ 2,928

A high performance offensive security tool for reconnaissance and vulnerability scanning

Uncover ⭐ 2,149

Quickly discover exposed hosts on the internet using multiple search engines.

Awesome Asset Discovery ⭐ 1,749

List of Awesome Asset Discovery Resources

Sn0int ⭐ 1,749

Semi-automatic OSINT framework and package manager

Tidos Framework ⭐ 1,732

The Offensive Manual Web Application Penetration Testing Framework.

Reconspider ⭐ 1,729

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Gitgot ⭐ 1,332

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Attacksurfacemapper ⭐ 1,230

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

Cariddi ⭐ 1,228

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

Intrigue Core ⭐ 1,205

Discover Your Attack Surface!

Fbi Tools ⭐ 1,153

🕵️ OSINT Tools for gathering information and actions forensics 🕵️

Goofuzz ⭐ 1,119

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

Metabigor ⭐ 1,087

OSINT tools and more but without API ke

Inventory ⭐ 1,019

Asset inventory of over 800 public bug bounty programs.

Favfreak ⭐ 965

Making Favicon.ico based Recon Great again !

Hosthunter ⭐ 826

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Maryam: Open-source Intelligence(OSINT) Framework

Sitedorks ⭐ 719

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

Witnessme ⭐ 696

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Karma_v2 ⭐ 630

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

Datasurgeon ⭐ 630

Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers and a lot More From Text

My subdomain enumeration script. It's unique in the way it is built upon.

Gasmask ⭐ 617

Information gathering tool - OSINT

Automated network asset, email, and social media profile discovery and cataloguing.

All in One Recon Tool for Bug Bounty

Sarenka ⭐ 533

OSINT tool - gets data from services like shodan, censys etc. in one app

Osintbuddy ⭐ 498

Node graphs, OSINT data mining, and plugins. Connect unstructured and public data for transformative insights

Xurlfind3r ⭐ 485

A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.

Flutter Spy ⭐ 480

Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.

Bigbountyrecon ⭐ 471

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

OSINT Template Engine

Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.

Mailcat ⭐ 399

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Ntlmrecon ⭐ 397

Enumerate information from NTLM authentication enabled web endpoints 🔎

Offensive Osint Tools ⭐ 373

OffSec OSINT Pentest/RedTeam Tools

Phoneinfoga ⭐ 370

script to search for data about phone numbers

Awesome Cybersec Resources ⭐ 314

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

Satintel ⭐ 299

SatIntel is an OSINT tool for Satellites 🛰. Extract satellite telemetry, receive orbital predictions, and parse TLEs 🔭

Uscrapper ⭐ 298

Uscrapper 2.0, a powerful OSINT webscraper for personal data collection. Uscrapper uses web scraping to extract email IDs, social-media links, geolocations, phone numbers, and usernames from webpages, supports multithreading, has advanced Anti-webscraping bypassing modules, supports webcrawling to scrape from various sublinks within the same domain

Osint Cheat Sheet ⭐ 293

OSINT cheat sheet, list OSINT tools, dataset, article, book and OSINT tips

Phomber ⭐ 255

[PH0MBER]: An open source infomation grathering & reconnaissance framework!

An advanced tool for email reconnaissance

Bucketloot ⭐ 252

BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.

Arsenal ⭐ 247

Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bounty

A passive subdomain finder

Yar is a tool for plunderin' organizations, users and/or repositories.

A modular OSINT honeypot for blue teamers

N0kovo_subdomains ⭐ 214

An extremely effective subdomain wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.

Subrake ⭐ 211

🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).

🕵️ Email osint tool

Investigo ⭐ 191

🔎 Find usernames and download their data across social media.

I See You ⭐ 188

ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

A Github organization reconnaissance tool.

Sagemode ⭐ 178

👀Sagemode: Track and Unveil Online identities across social media platforms🕵️‍♂️

Reconky Automated_bash_script ⭐ 170

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Geo Recon ⭐ 165

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

Intrec Pack ⭐ 164

Intelligence and Reconnaissance Package/Bundle installer.

Skytrack ⭐ 153

skytrack is a planespotting and aircraft OSINT tool made using Python 🛩🔍

Webosint ⭐ 148

W3b0s1nt (WebOSINT) is a Python tool/script for passive Domain Intelligence gathering.

Knockknock ⭐ 147

A simple reverse whois lookup tool which returns a list of domains owned by people or companies

Sherlock Js ⭐ 140

Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock

Bitcrook ⭐ 139

Open-Source Intelligence Apparatus

Sourcewolf ⭐ 137

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

Web Hacking Toolkit ⭐ 127

A web hacking toolkit (docker image).

Querytool ⭐ 117

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Insiders ⭐ 111

Archive of Potential Insider Threats

Phoneinfoga ⭐ 108

PhoneInfoga is one of the most advanced tools to scan phone numbers using only free resources.

Foxyrecon ⭐ 107

A Firefox add-on for OSINT investigations

Spaces Finder ⭐ 102

A tool to hunt for publicly accessible DigitalOcean Spaces

Certeagle ⭐ 98

Weaponizing Live CT logs for automated monitoring of assets

Daprofiler ⭐ 97

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

Smwyg Show Me What You Got ⭐ 95

This tool allows you to perform OSINT and reconnaissance on an organisation or an individual. It allows one to search 1.4 Billion clear text credentials which was dumped as part of BreachCompilation leak. This database makes finding passwords faster and easier than ever before.

Xsubfind3r ⭐ 92

A command-line interface (CLI) based passive subdomain discovery utility. It is designed to efficiently identify known subdomains of given domains by tapping into a multitude of curated online passive sources.

Osinteye ⭐ 91

Username enumeration & reconnaisance suite

Bing Ip2hosts ⭐ 91

bingip2hosts is a Bing.com web scraper that discovers websites by IP address

Lazyrecon ⭐ 87

Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.

Xposedornot ⭐ 87

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

Graphinder ⭐ 86

🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️

yet another Shodan.io client

A simple tool that helps to find assets/domains based on the Google Analytics ID.

Automate recon for red team assessments.

Secator - the pentester's swiss knife

uscan is an automated vulnerability scanner that streamlines the process of website hacking, making it faster and more efficient than ever before.

spk aka spritzgebaeck: A small OSINT/Recon tool to find CIDRs that belong to a specific organization.

1-100 of 167 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.