{"id":13539856,"url":"https://github.com/superhedgy/attacksurfacemapper","last_synced_at":"2025-04-08T08:14:56.055Z","repository":{"id":37271154,"uuid":"201067612","full_name":"superhedgy/AttackSurfaceMapper","owner":"superhedgy","description":"AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.","archived":false,"fork":false,"pushed_at":"2024-04-08T16:13:24.000Z","size":3831,"stargazers_count":1350,"open_issues_count":7,"forks_count":197,"subscribers_count":46,"default_branch":"master","last_synced_at":"2025-04-08T08:14:52.768Z","etag":null,"topics":["attack-surface","attacksurfacemapper","linkedin","osint","python","reconnaissance","subdomains"],"latest_commit_sha":null,"homepage":"https://AttackSurfaceMapper.com","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/superhedgy.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2019-08-07T14:32:53.000Z","updated_at":"2025-04-05T06:33:41.000Z","dependencies_parsed_at":"2024-08-01T09:23:44.508Z","dependency_job_id":"0a50b9bb-0e7b-4fce-8a55-133a8f671574","html_url":"https://github.com/superhedgy/AttackSurfaceMapper","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/superhedgy%2FAttackSurfaceMapper","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/superhedgy%2FAttackSurfaceMapper/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/superhedgy%2FAttackSurfaceMapper/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/superhedgy%2FAttackSurfaceMapper/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/superhedgy","download_url":"https://codeload.github.com/superhedgy/AttackSurfaceMapper/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247801175,"owners_count":20998339,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["attack-surface","attacksurfacemapper","linkedin","osint","python","reconnaissance","subdomains"],"created_at":"2024-08-01T09:01:33.057Z","updated_at":"2025-04-08T08:14:56.027Z","avatar_url":"https://github.com/superhedgy.png","language":"Python","readme":"![Python 3](https://img.shields.io/badge/Python-3_only-blue.svg \"Python 3 only\")\n![GitHub](https://img.shields.io/github/license/superhedgy/AttackSurfaceMapper)\n![GitHub last commit](https://img.shields.io/github/last-commit/superhedgy/AttackSurfaceMapper)\n![GitHub Issues](https://img.shields.io/github/issues/superhedgy/AttackSurfaceMapper)\n\n![Attack Surface Mapper Logo](https://npercoco.typepad.com/.a/6a0133f264aa62970b0240a49c6ba4200d-800wi \"Attack Surface Mapper Logo\")\n\n# AttackSurfaceMapper\n\nAttackSurfaceMapper (ASM) is a reconnaissance tool that uses a mixture of open source intelligence and active techniques to expand the attack surface of your target. You feed in a mixture of one or more domains, subdomains and IP addresses and it uses numerous techniques to find more targets. It enumerates subdomains with bruteforcing and passive lookups, Other IPs of the same network block owner, IPs that have multiple domain names pointing to them and so on.\n\nOnce the target list is fully expanded it performs passive reconnaissance on them, taking screenshots of websites, generating visual maps, looking up credentials in public breaches, passive port scanning with Shodan/Censys and scraping employees from LinkedIn.\n\n## Demo\n\n[![Demo](https://img.youtube.com/vi/buIQSf_gmdE/0.jpg)](https://www.youtube.com/watch?v=buIQSf_gmdE)\n\n## Setup\n\nAs this is a Python based tool, it should theoretically run on Linux, ChromeOS ([Developer Mode](https://www.chromium.org/chromium-os/developer-information-for-chrome-os-devices/generic)), macOS and Windows.\n\n1. Download AttackSurfaceMapper\n\n```sh\ngit clone https://github.com/superhedgy/AttackSurfaceMapper\ncd AttackSurfaceMapper\n```\n\n2. Install Python3 dependencies\n\n```sh\npython3 -m pip install --no-cache-dir -r requirements.txt\n```\n\n3. Add optional API keys to enhance data gathering \u0026 analysis\n\nRegister and obtain an API key from:\n\n- [VirusTotal](https://www.virustotal.com/gui/join-us)\n- [Shodan.io](https://account.shodan.io/register)\n- [Hunter.io](https://hunter.io/users/sign_up)\n- ~~[WeLeakInfo](https://weleakinfo.com/register)~~\n- [LinkedIn](https://www.linkedin.com/start/join)\n- [GrayHatWarfare](https://buckets.grayhatwarfare.com/register)\n- [Censys.io](https://search.censys.io/account)\n\nEdit and enter the keys in keylist file\n\n```sh\nnano keylist.asm\n```\n\n## Usage\n\n```sh\npython3 asm.py -t your_site.com -ln -w resources/top100_sublist.txt -o demo_run\n```\n\n### Optional Parameters\n\nAdditional optional parameters can also be set to choose to include active reconnaissance modules in addition to the default passive modules.\n\n```\n|\u003c------ AttackSurfaceMapper - Help Page ------\u003e|\n\npositional arguments:\n  targets               Sets the path of the target IPs file.\n\noptional arguments:\n  -h, --help            show this help message and exit\n  -f FORMAT, --format FORMAT\n                        Choose between CSV and TXT output file formats.\n  -o OUTPUT, --output OUTPUT\n                        Sets the path of the output file.\n  -sc, --screen-capture\n                        Capture a screen shot of any associated Web Applications.\n  -sth, --stealth       Passive mode allows reconnaissance using OSINT techniques only.\n  -t TARGET, --target TARGET\n                        Set a single target IP.\n  -V, --version         Displays the current version.\n  -w WORDLIST, --wordlist WORDLIST\n                        Specify a list of subdomains.\n  -sw SUBWORDLIST, --subwordlist SUBWORDLIST\n                        Specify a list of child subdomains.\n  -e, --expand          Expand the target list recursively.\n  -d, --debug           Enables debugging information.\n  -v, --verbose         Verbose output in the terminal window.\n\nAuthors: Andreas Georgiou (@superhedgy)\n         Jacob Wilkin (@greenwolf)\n```\n\n## Authors\n\n- [Andreas Georgiou](https://twitter.com/superhedgy)\n- [Jacob Wilkin](https://github.com/Greenwolf)\n\n## Acknowledgments\n\n- Thanks to [Aidan Holland](https://github.com/thehappydinoa) for adding the Censys module.\n\n","funding_links":[],"categories":["\u003ca id=\"a76463feb91d09b3d024fae798b92be6\"\u003e\u003c/a\u003e侦察\u0026\u0026信息收集\u0026\u0026子域名发现与枚举\u0026\u0026OSINT","\u003ca id=\"170048b7d8668c50681c0ab1e92c679a\"\u003e\u003c/a\u003e工具"],"sub_categories":["\u003ca id=\"05ab1b75266fddafc7195f5b395e4d99\"\u003e\u003c/a\u003e未分类-OSINT"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsuperhedgy%2Fattacksurfacemapper","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsuperhedgy%2Fattacksurfacemapper","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsuperhedgy%2Fattacksurfacemapper/lists"}