Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for reconnaissance
reconnaissance
x
467 search results found
Sherlock
⭐
46,337
🔎 Hunt down social media accounts by username across social networks
Bettercap
⭐
15,224
The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
Phoneinfoga
⭐
11,939
Information gathering framework for phone numbers
Social Analyzer
⭐
10,841
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
Theharvester
⭐
10,249
E-mails, subdomains and names Harvester - OSINT
Subfinder
⭐
9,210
Fast passive subdomain enumeration tool.
Red Teaming Toolkit
⭐
8,230
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Osint Framework
⭐
6,540
OSINT Framework
Rengine
⭐
6,446
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Seeker
⭐
6,188
Accurately Locate Smartphones using Social Engineering
Reconftw
⭐
5,204
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Osmedeus
⭐
5,076
A Workflow Engine for Offensive Security
Allaboutbugbounty
⭐
4,793
All about bug bounty (bypasses, payloads, and etc)
Arl
⭐
4,502
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Aquatone
⭐
4,369
A Tool for Domain Flyovers
Hakrawler
⭐
4,120
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Discover
⭐
3,238
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
Raccoon
⭐
2,928
A high performance offensive security tool for reconnaissance and vulnerability scanning
Massdns
⭐
2,788
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
Awesome Bugbounty Tools
⭐
2,580
A curated list of various bug bounty tools
Uncover
⭐
2,149
Quickly discover exposed hosts on the internet using multiple search engines.
Finalrecon
⭐
1,949
All In One Web Recon
Recon Ng
⭐
1,849
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
Sudomy
⭐
1,831
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Awesome Asset Discovery
⭐
1,749
List of Awesome Asset Discovery Resources
Sn0int
⭐
1,749
Semi-automatic OSINT framework and package manager
Tidos Framework
⭐
1,732
The Offensive Manual Web Application Penetration Testing Framework.
Reconspider
⭐
1,729
🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Rapidscan
⭐
1,489
🆕 The Multi-Tool Web Vulnerability Scanner.
Fierce
⭐
1,415
A DNS reconnaissance tool for locating non-contiguous IP space.
Lazyrecon
⭐
1,408
This script is intended to automate your reconnaissance process in an organized fashion
Gitgot
⭐
1,384
Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
Adalanche
⭐
1,380
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
Attacksurfacemapper
⭐
1,230
AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.
Cariddi
⭐
1,228
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
Intrigue Core
⭐
1,205
Discover Your Attack Surface!
Wordlists
⭐
1,200
Real-world infosec wordlists, updated regularly
Fbi Tools
⭐
1,153
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
Goofuzz
⭐
1,119
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
Shuffledns
⭐
1,091
MassDNS wrapper written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.
Metabigor
⭐
1,087
OSINT tools and more but without API ke
Inventory
⭐
1,019
Asset inventory of over 800 public bug bounty programs.
Favfreak
⭐
965
Making Favicon.ico based Recon Great again !
Public Bugbounty Programs
⭐
936
Community curated list of public bug bounty and responsible disclosure programs.
Coldfire
⭐
871
Golang malware development library
Hosthunter
⭐
826
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Maryam
⭐
807
Maryam: Open-source Intelligence(OSINT) Framework
Pywerview
⭐
803
A (partial) Python rewriting of PowerSploit's PowerView
Bugbountyscanner
⭐
787
A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
Sitedorks
⭐
719
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.
Scrapedin
⭐
712
A tool to scrape LinkedIn without API restrictions for data reconnaissance
Witnessme
⭐
696
Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.
Garud
⭐
694
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
Sublert
⭐
687
Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
Scilla
⭐
682
Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration
Datasurgeon
⭐
630
Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers and a lot More From Text
Karma_v2
⭐
630
⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)
Frogy
⭐
622
My subdomain enumeration script. It's unique in the way it is built upon.
Gasmask
⭐
617
Information gathering tool - OSINT
Odin
⭐
609
Automated network asset, email, and social media profile discovery and cataloguing.
3klcon
⭐
599
Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.
Natlas
⭐
565
Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.
Aort
⭐
556
All in One Recon Tool for Bug Bounty
Sarenka
⭐
533
OSINT tool - gets data from services like shodan, censys etc. in one app
Osintbuddy
⭐
498
Node graphs, OSINT data mining, and plugins. Connect unstructured and public data for transformative insights
Rustbuster
⭐
493
A Comprehensive Web Fuzzer and Content Discovery Tool
Xurlfind3r
⭐
485
A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.
Adhrit
⭐
484
Android Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.
Flutter Spy
⭐
480
Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.
Bbrf Client
⭐
473
The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
Bigbountyrecon
⭐
471
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
Cloudscraper
⭐
469
CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
Ote
⭐
462
OSINT Template Engine
R4ven
⭐
438
Track the IP address and GPS location of the user's smartphone or PC and capture a picture of the target, along with device information.
Webcopilot
⭐
425
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
Hawkscan
⭐
417
Security Tool for Reconnaissance and Information Gathering on a website. (python 3.x)
Dome
⭐
412
Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.
Shotlooter
⭐
411
a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc
Badkarma
⭐
409
network reconnaissance toolkit
Mailcat
⭐
399
Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬
Ntlmrecon
⭐
397
Enumerate information from NTLM authentication enabled web endpoints 🔎
Awesome Bbht
⭐
390
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Rekono
⭐
385
Pentesting automation platform that combines hacking tools to complete assessments
Recon Pipeline
⭐
374
An automated target reconnaissance pipeline.
Offensive Osint Tools
⭐
373
OffSec OSINT Pentest/RedTeam Tools
Getjs
⭐
373
A tool to fastly get all javascript sources/files
Phoneinfoga
⭐
370
script to search for data about phone numbers
Awesome Rl Competitions
⭐
340
List of competitions related to Reinforcement Learning
Reconscan
⭐
324
Network reconnaissance and vulnerability assessment tools.
Kamerka Gui
⭐
316
Ultimate Internet of Things/Industrial Control Systems reconnaissance tool.
Awesome Cybersec Resources
⭐
314
An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)
Silenthound
⭐
313
Quietly enumerate an Active Directory Domain via LDAP parsing users, admins, groups, etc.
Recon.sh
⭐
304
A toolset to track and organize output of reconnaissance tools
Megplus
⭐
301
Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
Satintel
⭐
299
SatIntel is an OSINT tool for Satellites 🛰. Extract satellite telemetry, receive orbital predictions, and parse TLEs 🔭
Uscrapper
⭐
298
Uscrapper 2.0, a powerful OSINT webscraper for personal data collection. Uscrapper uses web scraping to extract email IDs, social-media links, geolocations, phone numbers, and usernames from webpages, supports multithreading, has advanced Anti-webscraping bypassing modules, supports webcrawling to scrape from various sublinks within the same domain
Second Order
⭐
295
Second-order subdomain takeover scanner
Osint Cheat Sheet
⭐
293
OSINT cheat sheet, list OSINT tools, dataset, article, book and OSINT tips
Nebula
⭐
291
Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps Components.
Asnlookup
⭐
288
Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
1-100 of 467 search results
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.