Awesome Open Source

Programming Languages

Search results for recon

618 search results found

Amass ⭐ 11,124

In-depth attack surface mapping and asset discovery

Spiderfoot ⭐ 11,035

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Theharvester ⭐ 10,249

E-mails, subdomains and names Harvester - OSINT

Red Teaming Toolkit ⭐ 8,230

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Oneforall ⭐ 7,315

OneForAll是一款功能强大的子域收集工具

Rengine ⭐ 6,446

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Reconftw ⭐ 5,204

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Whatweb ⭐ 5,096

Next generation web scanner

Scan4all ⭐ 4,909

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

Arjun ⭐ 4,831

HTTP parameter discovery suite.

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Hakrawler ⭐ 4,120

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

Webhackersweapons ⭐ 3,555

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

H8mail ⭐ 3,476

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Discover ⭐ 3,238

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

A recursive internet scanner for hackers.

Winpwn ⭐ 3,151

Automation for internal Windows Penetrationtest / AD-Security

Pentest Tools ⭐ 2,652

A collection of custom security tools for quick needs.

Nmapautomator ⭐ 2,312

A script that you can run in the background!

Awesome Oneliner Bugbounty ⭐ 2,201

A collection of awesome one-liner scripts especially for bug bounty tips.

Striker ⭐ 2,171

Striker is an offensive information and vulnerability scanner.

Uncover ⭐ 2,149

Quickly discover exposed hosts on the internet using multiple search engines.

Cloudfail ⭐ 2,080

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Finalrecon ⭐ 1,949

All In One Web Recon

Mind Maps ⭐ 1,913

Mind-Maps of Several Things

Altdns ⭐ 1,900

Generates permutations, alterations and mutations of subdomains and then resolves them

Recon Ng ⭐ 1,849

Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.

Awesome Asset Discovery ⭐ 1,749

List of Awesome Asset Discovery Resources

Sn0int ⭐ 1,749

Semi-automatic OSINT framework and package manager

Reconspider ⭐ 1,729

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Recondog ⭐ 1,696

Reconnaissance Swiss Army Knife

Redteam Offensivesecurity ⭐ 1,630

Tools & Interesting Things for RedTeam Ops

Urlhunter ⭐ 1,384

a recon tool that allows searching on URLs that are exposed via shortener services

Gitgot ⭐ 1,384

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

🖖 Fast, modern, easy-to-use network scanner

Hidden parameters discovery suite

Bugcrowd_university ⭐ 1,305

Open source education content for the researcher community

Puredns ⭐ 1,294

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

Observer_cli ⭐ 1,293

Visualize Erlang/Elixir Nodes On The Command Line

Recon ⭐ 1,288

Collection of functions and scripts to debug Erlang in production.

Cariddi ⭐ 1,228

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

Pentest Notes ⭐ 1,202

Goofuzz ⭐ 1,119

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Network recon / lookup API server / Web traceroute server

Metabigor ⭐ 1,087

OSINT tools and more but without API ke

Inventory ⭐ 1,019

Asset inventory of over 800 public bug bounty programs.

Favfreak ⭐ 965

Making Favicon.ico based Recon Great again !

面向红队的, 高度可控可拓展的自动化引擎

Simplyemail ⭐ 934

Email recon made fast and easy, with a framework to build on

Zeus Scanner ⭐ 921

Advanced reconnaissance utility

Hosthunter ⭐ 826

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Maryam: Open-source Intelligence(OSINT) Framework

Jsfscan.sh ⭐ 754

Automation for javascript recon in bug bounty.

Leaky Paths ⭐ 746

A collection of special paths linked to common internal paths, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Sitedorks ⭐ 719

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

OSINT Project. Collect information from a mail. Gather. Profile. Timeline.

Setup script for Regon-ng

Reconpi ⭐ 701

ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.

Bug Bounty Roadmaps ⭐ 696

Bug Bounty Roadmaps

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration

Active Directory Exploitation Cheat Sheet ⭐ 659

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Generates combination of domain names from the provided input.

Datasurgeon ⭐ 630

Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers and a lot More From Text

Wordlists ⭐ 622

Infosec Wordlists and more.

Oscp Prep ⭐ 619

A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam

Automated network asset, email, and social media profile discovery and cataloguing.

Go CLI and Library for quickly mapping organization network ranges using ASN information.

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

Infoooze ⭐ 590

A OSINT tool which helps you to quickly find information effectively. All you need is to input and it will take take care of rest.

Censys Subdomain Finder ⭐ 589

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

Aiodnsbrute ⭐ 579

Python 3.5+ DNS asynchronous brute force utility

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

All in One Recon Tool for Bug Bounty

Nullinux ⭐ 525

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

Find emails of Github users

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

SIEM Tactics, Techiques, and Procedures

Flutter Spy ⭐ 480

Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.

Bigbountyrecon ⭐ 471

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Penetration Testing Tools ⭐ 465

Penetration Testing tools - one repo to clone them all... containing latest pen testing tools

OSINT Template Engine

Shadowclone ⭐ 459

Unleash the power of cloud

Spidersuite ⭐ 447

Advance web spider/crawler for cyber security professionals

Remoterecon ⭐ 432

Remote Recon and Collection

Webcopilot ⭐ 425

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

Scrape domain names from SSL certificates of arbitrary hosts

Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.

Shotlooter ⭐ 411

a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc

JF⚡can - Super fast port scanning & service discovery using Masscan and Nmap. Scan large networks with Masscan and use Nmap's scripting abilities to discover information about services. Generate report.

Totalrecon ⭐ 407

TotalRecon installs all the recon tools you need

Meerkat ⭐ 407

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

Fastsurfer ⭐ 402

PyTorch implementation of FastSurferCNN

Ilo4_toolbox ⭐ 399

Toolbox for HPE iLO4 & iLO5 analysis

Mailcat ⭐ 399

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Ntlmrecon ⭐ 397

Enumerate information from NTLM authentication enabled web endpoints 🔎

Network footprint scanner platform. Discover domains and run your custom checks periodically.

Awesome Bbht ⭐ 390

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Pentesting automation platform that combines hacking tools to complete assessments

Pentmenu ⭐ 382

A bash script for recon and DOS attacks

Reconator ⭐ 375

Automated Recon for Pentesting & Bug Bounty

1-100 of 618 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.