Awesome Open Source

Programming Languages

Search results for recon reconnaissance

reconnaissance x

179 search results found

Theharvester ⭐ 10,249

E-mails, subdomains and names Harvester - OSINT

Red Teaming Toolkit ⭐ 8,230

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Rengine ⭐ 6,446

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Reconftw ⭐ 5,204

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Hakrawler ⭐ 4,120

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

Discover ⭐ 3,238

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

Uncover ⭐ 2,149

Quickly discover exposed hosts on the internet using multiple search engines.

Finalrecon ⭐ 1,949

All In One Web Recon

Recon Ng ⭐ 1,849

Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.

Awesome Asset Discovery ⭐ 1,749

List of Awesome Asset Discovery Resources

Sn0int ⭐ 1,749

Semi-automatic OSINT framework and package manager

Reconspider ⭐ 1,729

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Gitgot ⭐ 1,384

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Cariddi ⭐ 1,228

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

Goofuzz ⭐ 1,119

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

Metabigor ⭐ 1,087

OSINT tools and more but without API ke

Inventory ⭐ 1,019

Asset inventory of over 800 public bug bounty programs.

Favfreak ⭐ 965

Making Favicon.ico based Recon Great again !

Hosthunter ⭐ 826

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Maryam: Open-source Intelligence(OSINT) Framework

Sitedorks ⭐ 719

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration

Datasurgeon ⭐ 630

Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers and a lot More From Text

Automated network asset, email, and social media profile discovery and cataloguing.

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

All in One Recon Tool for Bug Bounty

Flutter Spy ⭐ 480

Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.

Bigbountyrecon ⭐ 471

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

OSINT Template Engine

Webcopilot ⭐ 425

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.

Shotlooter ⭐ 411

a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc

Mailcat ⭐ 399

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Ntlmrecon ⭐ 397

Enumerate information from NTLM authentication enabled web endpoints 🔎

Awesome Bbht ⭐ 390

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Pentesting automation platform that combines hacking tools to complete assessments

Recon Pipeline ⭐ 374

An automated target reconnaissance pipeline.

A tool to fastly get all javascript sources/files

Recon.sh ⭐ 304

A toolset to track and organize output of reconnaissance tools

Megplus ⭐ 301

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

Second Order ⭐ 295

Second-order subdomain takeover scanner

Url Tracker ⭐ 285

Change monitoring app that checks the content of web pages in different periods.

An advanced tool for email reconnaissance

Bucketloot ⭐ 252

BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.

Csprecon ⭐ 248

Discover new target domains using Content Security Policy

Arsenal ⭐ 247

Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bounty

Cut Cdn ⭐ 243

✂️ Removing CDN IPs from the list of IP addresses

Autorecon ⭐ 235

Simple shell script for automated domain recognition with some tools

Recon My Way ⭐ 230

This repository created for personal use and added tools from my latest blog post.

Gorecon ⭐ 227

Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal

Generate tens of thousands of subdomain combinations in a matter of seconds

Subdomz ⭐ 177

All in One Subdomain Enumeration Tool

Reconky Automated_bash_script ⭐ 170

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Lazyrecon ⭐ 169

An automated approach to performing recon for bug bounty hunting and penetration testing.

Geo Recon ⭐ 165

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

Intrec Pack ⭐ 164

Intelligence and Reconnaissance Package/Bundle installer.

Osmedeus Base ⭐ 163

Build your own reconnaissance system with Osmedeus Next Generation

Autosetup ⭐ 162

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

Recsech ⭐ 161

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Make URL path combinations using a wordlist

Favirecon ⭐ 149

Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.

Tugarecon ⭐ 144

Pentest: Subdomains enumeration tool for penetration testers.

Scriptkiddi3 ⭐ 141

Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using shell script and open source tools.

Bug Bounty Recon Dataset ⭐ 138

recon data for public bug bounty programs (irregular updates)

Web Hacking Toolkit ⭐ 127

A web hacking toolkit (docker image).

Webstor ⭐ 119

A script to quickly enumerate all websites across all of your organization's networks, store their responses, and query for known web technologies, such as those with zero-day vulnerabilities.

Querytool ⭐ 117

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

An automation tool to install the most popular tools for bug bounty or pentesting.

Insiders ⭐ 111

Archive of Potential Insider Threats

Smartrecon ⭐ 102

smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter

Spaces Finder ⭐ 102

A tool to hunt for publicly accessible DigitalOcean Spaces

Extract pieces of info from a web page's Wayback Machine history

Urls de-duplication tool for better recon.

Osinteye ⭐ 91

Username enumeration & reconnaisance suite

Xposedornot ⭐ 87

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

Sub Drill ⭐ 82

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

A simple tool that helps to find assets/domains based on the Google Analytics ID.

ScanPro - NMap Scanning Scripts ~ Network Mapper

Automate recon for red team assessments.

Chomtesh ⭐ 76

CHOMTE.SH is a powerful shell script designed to automate reconnaissance tasks during penetration testing. It utilizes various Go-based tools to gather information and identify the attack surface, making it a valuable asset for bug bounty hunters and penetration testers.

NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.

Golang-based subdomain miner leveraging certificate transparency logs

Enumerate a target Based off of Nmap Results

Reconcat ⭐ 69

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

spk aka spritzgebaeck: A small OSINT/Recon tool to find CIDRs that belong to a specific organization.

Monitor New Subdomain ⭐ 64

MNS is a security and reconnaissance tool for monitoring new subdomains

Discord Recon ⭐ 64

Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server

Gitmonitor ⭐ 61

One way to continuously monitor sensitive information that could be exposed on Github

Mainrecon ⭐ 61

mainRecon is an automated reconnaissance docker image for bugbounty hunter write in bash script.

Grepaddr ⭐ 60

Use grepaddr to extract (grep) all kinds of addresses from stdin like URLs (incl. IPv4/IPv6), IP addresses & ranges (IPv4/IPv6), e-mail addresses, MAC addresses.

Enumerepo ⭐ 60

List all public repositories for (valid) GitHub usernames

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

Osint Tools ⭐ 56

👀 Some of my favorite OSINT tools.

Gitosint_bot ⭐ 55

GitOSINT: The OSINT Powerhouse for Discord. The go-to Discord bot for Open Source Intelligence (OSINT).

Sifter - All purpose penetration testing op-center

Github Recon ⭐ 48

GitHub Recon — and what you can achieve with it!

Monitoring the Cloud Landscape

2017 Bsideslv Modern Recon ⭐ 47

Materials related to the 2017 BSides Las Vegas presentation

Related Searches

Python Recon (340)

Python Reconnaissance (252)

1-100 of 179 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.