Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

Projects in Awesome Lists tagged with reconnaissance

A curated list of projects in awesome lists tagged with reconnaissance .

https://github.com/sherlock-project/sherlock

Hunt down social media accounts by username across social networks

cli hacktoberfest information-gathering linux macos osint python python3 reconnaissance redteam sherlock tools windows

Last synced: 02 Oct 2024

https://github.com/yogeshojha/rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

bug-bounty bugbounty hacking information-gathering infosec osint penetration-testing pentesting recon recon-engine reconnaissance rengine scanner scanner-web scanning security-tools

Last synced: 25 Sep 2024

https://github.com/thewhiteh4t/seeker

Accurately Locate Smartphones using Social Engineering

accuracy altitude geolocation latitude longitude reconnaissance system-information

Last synced: 01 Oct 2024

https://github.com/six2dez/reconftw

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

bug-bounty bugbounty dns fuzzing hacking nuclei osint penetration-testing pentest pentest-tool pentesting recon reconnaissance scanner security security-tools subdomain vulnerabilities

Last synced: 31 Jul 2024

https://github.com/hakluke/hakrawler

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

bugbounty crawling hacking osint pentesting recon reconnaissance

Last synced: 30 Sep 2024

https://github.com/leebaird/discover

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

bash enumeration information-gathering kali-linux metasploit nmap osint payload-generator pentesting recon reconnaissance red-team scanning

Last synced: 30 Sep 2024

https://github.com/blechschmidt/massdns

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

bulk-dns dns dns-bruteforcer dns-client dns-lookup dns-resolution dns-resolver massdns reconnaissance subbrute subdomain

Last synced: 30 Sep 2024

https://github.com/projectdiscovery/uncover

Quickly discover exposed hosts on the internet using multiple search engines.

asm attack-surface bugbounty cli osint recon reconnaissance

Last synced: 01 Oct 2024

https://github.com/bhavsec/reconspider

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

automated cybersecurity framework hacking information-gathering osint pentest pentesting python recon reconnaissance scanner security

Last synced: 31 Jul 2024

https://github.com/0xsobky/hackvault

A container repository for my public web hacks!

exploit fuzzing payloads pentesting reconnaissance regex tracking web-security xss

Last synced: 30 Sep 2024

https://github.com/screetsec/sudomy

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

bash bugbounty bugcrowd collected-subdomains enumeration framework hackerone httprobe kali kali-linux pentesting recon-subdomain reconnaissance scanner subdomain-enumeration subdomain-finder subdomain-scanner subfinder sublist3r

Last synced: 30 Sep 2024

https://github.com/0xSobky/HackVault

A container repository for my public web hacks!

exploit fuzzing payloads pentesting reconnaissance regex tracking web-security xss

Last synced: 30 Jul 2024

https://github.com/lkarlslund/adalanche

Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)

acl acl-audit active-directory activedirectory ad-audit blueteam graph-theory infosec ldap ldap-audit reconnaissance

Last synced: 26 Sep 2024

https://github.com/mschwager/fierce

A DNS reconnaissance tool for locating non-contiguous IP space.

discovered-domains dns domain fierce name-server reconnaissance subdomain zone-transfers

Last synced: 30 Sep 2024

https://github.com/lkarlslund/Adalanche

Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)

acl acl-audit active-directory activedirectory ad-audit blueteam graph-theory infosec ldap ldap-audit reconnaissance

Last synced: 01 Aug 2024

https://github.com/edoardottt/cariddi

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

bugbounty crawler crawling endpoint-discovery endpoints go golang hacktoberfest infosec osint penetration-testing pentesting recon reconnaissance redteam scraper secret-keys secrets-detection security security-tools

Last synced: 30 Sep 2024

https://github.com/bishopfox/gitgot

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

fuzzy-matching gist-search gists github-api osint python recon reconnaissance security security-scanner security-tools sensitive-data-exposure

Last synced: 30 Sep 2024

https://github.com/BishopFox/GitGot

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

fuzzy-matching gist-search gists github-api osint python recon reconnaissance security security-scanner security-tools sensitive-data-exposure

Last synced: 01 Aug 2024

https://github.com/m3n0sd0n4ld/goofuzz

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

bash-script bugbounty discovery fuzzing google-dorks hacking information-disclosure infosec osint penetration-testing pentesting recon reconnaissance red-team subdomain

Last synced: 30 Sep 2024

https://github.com/superhedgy/attacksurfacemapper

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

attack-surface attacksurfacemapper linkedin osint python reconnaissance subdomains

Last synced: 30 Sep 2024

https://github.com/projectdiscovery/shuffledns

MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.

dns dns-bruteforcer dns-resolution dns-resolver hacktoberfest massdns reconnaissance subdomain-bruteforcing

Last synced: 01 Aug 2024

https://github.com/m3n0sd0n4ld/GooFuzz

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

bash-script bugbounty discovery fuzzing google-dorks hacking information-disclosure infosec osint penetration-testing pentesting recon reconnaissance red-team subdomain

Last synced: 01 Aug 2024

https://github.com/viralmaniar/bigbountyrecon

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

blue-team bugbounty bugbounty-tool bugbountytips cybersecurity offensive-security osint pentest-tool pentesting purple-team purple-teams recon reconnaissance red-team red-teaming

Last synced: 30 Sep 2024

https://github.com/twelvesec/gasmask

Information gathering tool - OSINT

information-gathering osint reconnaissance

Last synced: 31 Jul 2024

https://github.com/Viralmaniar/BigBountyRecon

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

blue-team bugbounty bugbounty-tool bugbountytips cybersecurity offensive-security osint pentest-tool pentesting purple-team purple-teams recon reconnaissance red-team red-teaming

Last synced: 04 Aug 2024

https://github.com/h4r5h1t/webcopilot

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

bug-bounty bugbounty enumeration recon reconnaissance

Last synced: 30 Sep 2024

https://github.com/yassineaboukir/sublert

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

bug-bounty certificate-transparency certificate-transparency-logs hacking information-gathering monitoring-tool penetration-testing pentest python reconnaissance security sublert

Last synced: 01 Aug 2024

https://github.com/saeeddhqan/Maryam

Maryam: Open-source Intelligence(OSINT) Framework

maryam osint owasp reconnaissance search-engine social-network

Last synced: 01 Aug 2024

https://github.com/projectdiscovery/public-bugbounty-programs

Community curated list of public bug bounty and responsible disclosure programs.

bugbounty bugbounty-program chaos hacktoberfest reconnaissance

Last synced: 04 Aug 2024

https://github.com/the-useless-one/pywerview

A (partial) Python rewriting of PowerSploit's PowerView

active-directory linux pentest python reconnaissance

Last synced: 04 Aug 2024

https://github.com/chvancooten/bugbountyscanner

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

bug-bounty-reconnaissance bugbounty docker-image hacking hacktoberfest reconnaissance

Last synced: 28 Sep 2024

https://github.com/chvancooten/BugBountyScanner

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

bug-bounty-reconnaissance bugbounty docker-image hacking hacktoberfest reconnaissance

Last synced: 01 Aug 2024

https://github.com/dheerajmadhukar/karma_v2

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

automation bash-script bugbounty infrastructure intelligence osint reconnaissance shodan

Last synced: 01 Oct 2024

https://github.com/Zarcolio/sitedorks

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

baidu bing bugbounty bugcrowd duckduckgo google google-dorks googledork hackerone hacking infosec intigriti osint python3 recon reconnaissance search search-engines yahoo yandex

Last synced: 04 Aug 2024

https://github.com/r0x4r/garud

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

assetfinder bash-script bugbounty bugbounty-tool bugbountytips garud gf-patterns golang penetration-testing penetration-testing-tools reconnaissance subdomain-takeover vulnerability vulnerability-scanner

Last synced: 01 Oct 2024

https://github.com/Dheerajmadhukar/karma_v2

⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)

automation bash-script bugbounty infrastructure intelligence osint reconnaissance shodan

Last synced: 01 Aug 2024

https://github.com/R0X4R/Garud

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

assetfinder bash-script bugbounty bugbounty-tool bugbountytips garud gf-patterns golang penetration-testing penetration-testing-tools reconnaissance subdomain-takeover vulnerability vulnerability-scanner

Last synced: 01 Aug 2024

https://github.com/drew-alleman/datasurgeon

Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Security Numbers and a lot More From Text

bug-bounty ctf-tools cybersecurity email file-search hacking incident-response infosec ip-address osint pentesting recon reconnaissance regex rust rust-lang search search-tools security-tools windows

Last synced: 28 Sep 2024

https://github.com/byt3bl33d3r/witnessme

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

chromium headless-chrome osint python3 reconnaissance screenshots security security-tools web-inventory

Last synced: 28 Sep 2024

https://github.com/byt3bl33d3r/WitnessMe

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

chromium headless-chrome osint python3 reconnaissance screenshots security security-tools web-inventory

Last synced: 01 Aug 2024

https://github.com/Drew-Alleman/DataSurgeon

Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Security Numbers and a lot More From Text

bug-bounty ctf-tools cybersecurity email file-search hacking incident-response infosec ip-address osint pentesting recon reconnaissance regex rust rust-lang search search-tools security-tools windows

Last synced: 06 Aug 2024

https://github.com/Viralmaniar/I-See-You

ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.

bash-scripting geolocation geotargeting location-tracker location-tracking osint osint-reconnaissance osinttool phishing phishing-attacks phishing-engagements phishing-kit reconnaissance redteam redteaming socialengineering

Last synced: 12 Aug 2024

https://github.com/nyxgeek/o365recon

retrieve information via O365 and AzureAD with a valid cred

azure azuread hacking m365 o365 office365 pentesting reconnaissance user-enumeration

Last synced: 01 Aug 2024

https://github.com/iamthefrogy/frogy

My subdomain enumeration script. It's unique in the way it is built upon.

bug-bounty bugbounty infosec osint reconnaissance

Last synced: 01 Aug 2024

https://github.com/chrismaddalena/odin

Automated network asset, email, and social media profile discovery and cataloguing.

asset-discovery neo4j osint recon reconnaissance

Last synced: 29 Sep 2024

https://github.com/natlas/natlas

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

infosec natlas natlas-agent natlas-server nmap recon reconnaissance scanning

Last synced: 01 Aug 2024

https://github.com/jerlendds/osintbuddy

Node graphs, OSINT data mining, and plugins. Connect unstructured and public data for transformative insights

data-mining data-visualization information-gathering node-graph ontology osint osint-python plugin-system plugins python3 reconnaissance typescript

Last synced: 07 Aug 2024

https://github.com/utkusen/shotlooter

a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc

recon reconnaissance screenshot

Last synced: 04 Aug 2024

https://github.com/anasfik/flutter-spy

Explore, analyze, and gain valuable data & insights from reverse engineered Flutter apps.

bugbounty flutter osint recon reconnaissance reverse-engineering security-tools

Last synced: 01 Aug 2024

https://github.com/hueristiq/xurlfind3r

A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.

bug-bounty bug-bounty-tools contentdiscovery ethical-hacking ethical-hacking-tools go golang osint osint-tools penetration-testing penetration-testing-tools reconnaissance red-teaming red-teaming-tools web-security

Last synced: 01 Aug 2024

https://github.com/hueristiq/hqurlfind3r

A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.

bug-bounty bug-bounty-tools contentdiscovery ethical-hacking ethical-hacking-tools go golang osint osint-tools penetration-testing penetration-testing-tools reconnaissance red-teaming red-teaming-tools web-security

Last synced: 25 Aug 2024

https://github.com/phra/rustbuster

A Comprehensive Web Fuzzer and Content Discovery Tool

bug-bounty hacktoberfest pentesting reconnaissance security security-tools

Last synced: 31 Jul 2024

https://github.com/sharsil/mailcat

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

cat email email-api email-checker email-enum email-enumeration email-validation osint osint-python osint-reconnaissance osint-resources osint-tool probiv recon reconnaissance smtp smtp-checker tor user-check user-checker

Last synced: 31 Jul 2024

https://github.com/jordanpotti/cloudscraper

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.

aws azure bugbounty digitalocean hacking reconnaissance

Last synced: 01 Aug 2024

https://github.com/z0m31en7/uscrapper

Uscrapper Vanta: Dive deeper into the web with this powerful open-source tool. Extract valuable insights with ease and efficiency, from both surface and deep web sources. Empower your data mining and analysis with Vanta's advanced capabilities. Fast, reliable, and user-friendly, Uscrapper Vanta is the ultimate choice for researchers and analysts.

darkweb darkweb-crawler information-extraction information-gathering osint osint-python osint-tool python reconnaissance selenium selenium-webscraper tor web-scraping webcra webcrawler webscraping website-scraper websites

Last synced: 28 Sep 2024

https://github.com/jordanpotti/CloudScraper

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.

aws azure bugbounty digitalocean hacking reconnaissance

Last synced: 31 Jul 2024

https://github.com/pwnfoo/NTLMRecon

Enumerate information from NTLM authentication enabled web endpoints 🔎

blackarch cybersecurity enumeration hacking hacking-tools ntlm ntlmssp osint recon reconnaissance redteam security tools

Last synced: 04 Aug 2024

https://github.com/v4d1/Dome

Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.

bugbounty enumeration hacking-tool osint penetration-testing pentesting recon reconnaissance redteam redteam-tools subdomain subdomain-brute subdomain-enumeration subdomain-finder subdomain-scanner

Last synced: 04 Aug 2024

https://github.com/n0kovo/n0kovo_subdomains

An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.

bugbounty enumeration osint pentesting reconnaissance redteam subdomain-brute subdomain-bruteforcing subdomain-enumeration subdomain-scanner subdomain-wordlist subdomains wordlist wordlists

Last synced: 01 Aug 2024

https://github.com/z0m31en7/Uscrapper

Uscrapper Vanta: Dive deeper into the web with this powerful open-source tool. Extract valuable insights with ease and efficiency, from both surface and deep web sources. Empower your data mining and analysis with Vanta's advanced capabilities. Fast, reliable, and user-friendly, Uscrapper Vanta is the ultimate choice for researchers and analysts.

darkweb darkweb-crawler information-extraction information-gathering osint osint-python osint-tool python reconnaissance selenium selenium-webscraper tor web-scraping webcra webcrawler webscraping website-scraper websites

Last synced: 02 Aug 2024

https://github.com/capt-meelo/LazyRecon

An automated approach to performing recon for bug bounty hunting and penetration testing.

bugbounty pentest recon reconnaissance

Last synced: 31 Jul 2024

https://github.com/c0dejump/HawkScan

Security Tool for Reconnaissance and Information Gathering on a website. (python 3.x)

bugbounty fuzzer hawkscan information-gathering reconnaissance web

Last synced: 04 Aug 2024

https://github.com/chiasmod0n/chiasmodon

Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality revolves around searching for domain-related data, including domain emails, domain credentials, CIDRs , ASNs , and subdomains, the tool also allows users to search Google Play application ID.

asn attack-surface bugbounty bugbounty-tool chiasmodon cidr credentials email-enumeration emails information-gathering intelligence intelligence-analysis osint reconnaissance reconnaissance-framework subdomain-enumeration subdomains

Last synced: 01 Aug 2024