reconnaissance

There are 964 repositories under reconnaissance topic.

sherlock-project/sherlock
Hunt down social media accounts by username across social networks
Language:Python60.6k 1.1k 1k7k
sundowndev/phoneinfoga
Information gathering framework for phone numbers
Language:Go13.2k 675 4913.7k
qeeqbox/social-analyzer
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
Language:JavaScript11.7k 359 72923
laramies/theHarvester
E-mails, subdomains and names Harvester - OSINT
Language:Python11.5k 294 4342k
projectdiscovery/subfinder
Fast passive subdomain enumeration tool.
Language:Go10.3k 155 4591.3k
lockfale/OSINT-Framework
OSINT Framework
Language:JavaScript7.8k 467 1761.3k
yogeshojha/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
Language:HTML7.5k 141 8671.1k
thewhiteh4t/seeker
Accurately Locate Smartphones using Social Engineering
Language:CSS7.2k 334 4241.7k
daffainfo/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
5.9k 171 61.1k
six2dez/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Language:Shell5.7k 108 456924
michenriksen/aquatone
A Tool for Domain Flyovers
Language:Go5.6k 136 0883
j3ssie/osmedeus
A Workflow Engine for Offensive Security
Language:Go5.3k 133 226878
hakluke/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Language:Go4.5k 61 105497
Threekiii/Awesome-Redteam
一个攻防知识仓库 Red Teaming and Offensive Security
Language:Python3.6k 58 2635
leebaird/discover
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
Language:PowerShell3.4k 200 140825
blechschmidt/massdns
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
Language:C3.2k 72 110466
evyatarmeged/Raccoon
A high performance offensive security tool for reconnaissance and vulnerability scanning
Language:Python3.1k 108 37400
projectdiscovery/uncover
Quickly discover exposed hosts on the internet using multiple search engines.
Language:Go2.4k 37 69203
thewhiteh4t/FinalRecon
All In One Web Recon
Language:Python2.3k 58 52429
bhavsec/reconspider
🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Language:Python2.1k 68 46321
kpcyrd/sn0int
Semi-automatic OSINT framework and package manager
Language:Rust2.1k 42 110181
screetsec/Sudomy
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Language:Shell2k 33 89381
redhuntlabs/Awesome-Asset-Discovery
List of Awesome Asset Discovery Resources
2k 78 7327
0xSobky/HackVault
A container repository for my public web hacks!
Language:JavaScript1.9k 85 2274
0xInfection/TIDoS-Framework
The Offensive Manual Web Application Penetration Testing Framework.
Language:Python1.8k 124 110392
skavngr/rapidscan
:new: The Multi-Tool Web Vulnerability Scanner.
Language:Python1.8k 68 38405
danieldurnea/FBI-tools
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
1.7k 38 2260
lkarlslund/Adalanche
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
Language:Go1.7k 28 33161
mschwager/fierce
A DNS reconnaissance tool for locating non-contiguous IP space.
Language:Python1.6k 55 24199
edoardottt/cariddi
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
Language:Go1.5k 15 63158
BishopFox/GitGot
Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
Language:Python1.5k 42 12207
trickest/wordlists
Real-world infosec wordlists, updated regularly
1.4k 28 1169
intrigueio/intrigue-core
Discover Your Attack Surface!
Language:Ruby1.4k 76 113268
m3n0sd0n4ld/GooFuzz
GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).
Language:Shell1.3k 21 10136
projectdiscovery/shuffledns
MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.
Language:Go1.3k 37 81192
superhedgy/AttackSurfaceMapper
AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.
Language:Python1.3k 47 30194

reconnaissance

sherlock-project/sherlock

sundowndev/phoneinfoga

qeeqbox/social-analyzer

laramies/theHarvester

projectdiscovery/subfinder

lockfale/OSINT-Framework

yogeshojha/rengine

thewhiteh4t/seeker

daffainfo/AllAboutBugBounty

six2dez/reconftw

michenriksen/aquatone

j3ssie/osmedeus

hakluke/hakrawler

Threekiii/Awesome-Redteam

leebaird/discover

blechschmidt/massdns

evyatarmeged/Raccoon

projectdiscovery/uncover

thewhiteh4t/FinalRecon

bhavsec/reconspider

kpcyrd/sn0int

screetsec/Sudomy

redhuntlabs/Awesome-Asset-Discovery

0xSobky/HackVault

0xInfection/TIDoS-Framework

skavngr/rapidscan

danieldurnea/FBI-tools

lkarlslund/Adalanche

mschwager/fierce

edoardottt/cariddi

BishopFox/GitGot

trickest/wordlists

intrigueio/intrigue-core

m3n0sd0n4ld/GooFuzz

projectdiscovery/shuffledns

superhedgy/AttackSurfaceMapper