Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
Reconnaissance
Reconnaissance refers to the process of gathering information about a target system, network, or organization, typically before launching an attack. The goal of recon is to understand the targetโs vulnerabilities, systems, and defenses to increase the likelihood of a successful breach or to defend a network by identifying its weak points.
- GitHub: https://github.com/topics/recon
- Wikipedia: https://en.wikipedia.org/wiki/Reconnaissance
- Related Topics: osint,
- Last updated: 2025-01-30 00:20:29 UTC
- JSON Representation
https://github.com/melbadry9/ScanApi
Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.
bugbounty recon s3-bucket-scanner subdomains-enumeration
Last synced: 21 Nov 2024
https://github.com/marcolivierbouch/dirbpy
This is the new version of dirb in python
python python-script python3 recon security security-scanner security-tools web-scanner webscan webscanner
Last synced: 09 Nov 2024
https://github.com/mathis2001/webhackurls
Simple python OSINT tool for urls recon thanks to the waybackmachine.
bugbounty osint pentesting recon wayback-machine webarchive
Last synced: 11 Nov 2024
https://github.com/west-wind/LAR
Light Armoured Recon is a python script designed to automate passive recon. It automates execution of TheHarvester, whois, Robtex.com, Builtwith.com, DNSrecon, metagoofil, & knockpy.
automation builtwith dnsrecon metagoofil passive-check passive-vulnerability-scanner penetration-testing pentest-scripts python python-script recon shell-script theharvester
Last synced: 06 Nov 2024
https://github.com/mattmoony/d4v1d
Social-Media OSINT tool - gather info on users across multiple platforms; easily extensible by design. ๐ท
graph information-gathering instagram network osint py python recon reconnaissance scraper social-network web
Last synced: 24 Jan 2025
https://github.com/lekssays/shellfinder
A Simple Tool to Find Shells and Some Interesting Endpoints in Websites
cybersecurity endpoint-discovery python3 recon shell
Last synced: 10 Nov 2024
https://github.com/ronin-rb/ronin-recon
A micro-framework and tool for performing reconnaissance.
asset-discovery bug-bounty dirbuster directory-bruteforce hacking-tools hacktoberfest network-scanning recon recon-engine recon-framework reconnaissance subdomain-bruteforcing subdomain-enumeration subdomain-finder
Last synced: 13 Nov 2024
https://github.com/0xpugal/bounty.sh
simple bash script to earn bounties
bash bugbounty recon reconnaissance shell
Last synced: 08 Nov 2024
https://github.com/sidxparab/subdomain-enumeration-guide
This is a comprehensive Subdomain Enumeration Guide that traces back to my GitBook.
bugbounty pentesting recon reconnaissance subdomain-enumeration
Last synced: 18 Dec 2024
https://github.com/sidxparab/Subdomain-Enumeration-Guide
This is a comprehensive Subdomain Enumeration Guide that traces back to my GitBook.
bugbounty pentesting recon reconnaissance subdomain-enumeration
Last synced: 21 Nov 2024
https://github.com/shelld3v/flydns
Related subdomains finder
bug-bounty bugbounty hacking infosec network-security osint pentest pentesting recon reconnaissance security subdomains subdomains-discovery
Last synced: 28 Oct 2024
https://github.com/hacke-rc/rpcscan
RPCSCAN - A python tool to automate all the efforts that you put on finding the xmlrpc.php file on all of your target's subdomains and then finding the vulnerable methods and then finding the reports on hackerone and medium writeups.
bug-bounty bug-bounty-recon hacking hacking-python hacking-tool hacktoberfest hacktoberfest2021 recon termux-hacking termux-tools website-hacking wordpress-hack wpscan xmlrpc
Last synced: 11 Dec 2024
https://github.com/ekultek/gitrekt
Search .git folders for emails and URL's that should otherwise be hidden
email-finder osint recon reconnaissance searcher
Last synced: 12 Nov 2024
https://github.com/yukselberkay/asnap
asnap aims to render recon phase easier by providing updated data about which companies owns which ipv4 or ipv6 addresses and allows the user to automate initial port and service scanning.
asn automation information-gathering nmap recon
Last synced: 12 Nov 2024
https://github.com/melbadry9/WhoEnum
Mass querying whois records
bugbounty enumeration recon whois
Last synced: 21 Nov 2024
https://github.com/p0dalirius/getfortinetserialnumber
A Python script to extract the serial number of a remote Fortinet device.
certificate fortinet pentest recon serial-number
Last synced: 30 Dec 2024
https://github.com/swanandx/rustywitness
A CLI tool for getting screenshots of URLs using headless chrome
bugbounty cli headless-chrome recon rust web
Last synced: 27 Oct 2024
https://github.com/itsignacioportal/hacker-scoper
Automagically filter URLs with Bug Bounty program scope rules scraped from the internet.
bugbounty bugcrowd enumeration filter go golang hackerone infosec pentesting recon scopes security security-tools websec websecurity
Last synced: 30 Dec 2024
https://github.com/javierolmedo/ipdiscover
๐ A simple tool to obtain long lists of ips from domains using goroutines
bugbounty bughunter domain hacking-tool ip recon
Last synced: 29 Nov 2024
https://github.com/xalgord/my-methodologies
Tools and methods that I personally use for Recon and Exploitations
bug-bounty bugbounty penetration-testing pentesting recon xss
Last synced: 21 Jan 2025
https://github.com/ItsIgnacioPortal/hacker-scoper
Automagically filter URLs with Bug Bounty program scope rules scraped from the internet.
bugbounty bugcrowd enumeration filter go golang hackerone infosec pentesting recon scopes security security-tools websec websecurity
Last synced: 21 Nov 2024
https://github.com/thelikes/fuzzmost
all manner of wordlists
bugbounty infosec recon wordlist
Last synced: 21 Nov 2024
https://github.com/sam5epi0l/beginner-bug-bounty-automation
Many script that can be modified according to your needs for Information Gathering and Asset discovery in Bug Bounty Hunting (Pull requests are welcome!)
amass bash-script beginner-friendly bug-bounty bugbounty hacking hacking-tools nipe penetration-testing recon reconnaissance starter-kit tor tor-network
Last synced: 22 Nov 2024
https://github.com/zer0yu/xrecon
xrecon is a powerful web fingerprinting tool with CDN detection capabilities
fingerprint recon scan security-tools
Last synced: 01 Dec 2024
https://github.com/JavierOlmedo/ipdiscover
๐ A simple tool to obtain long lists of ips from domains using goroutines
bugbounty bughunter domain hacking-tool ip recon
Last synced: 21 Nov 2024
https://github.com/XyberWolf/ReconWolf
Web Footprinting Tool
cloudflare-bypass footprinting geoip-location information-gathering recon reconnaissance subdomain-scanner whois-lookup
Last synced: 06 Nov 2024
https://github.com/topscoder/fourohme
FourOhMe is a tool for testing HTTP headers on a website in order to try to bypass 40* HTTP codes. Written in Go, so easy to install and fast out of the box.
401 401-bypass 403 403-bypass bugbounty bugbountytips bugbountytricks cli http http-headers osint recon
Last synced: 13 Nov 2024
https://github.com/blacklanternsecurity/public-dns-servers
A CI/CD-verified list of the internet's known-good public DNS servers (from public-dns.info) Updated weekly!
automation bbot cicd cicd-pipeline dns dns-resolver dns-server list massdns nameservers osint pipeline public python python3 recon resolvers
Last synced: 08 Nov 2024
https://github.com/aufzayed/digit
Extract endpoints from specific Git repository for fuzzing
bugbounty bugbounty-tool bugbountytips cybersecurity hacking hacking-tool hacking-tools infosec pentest pentest-scripts pentest-tool pentesting pentesting-tools recon
Last synced: 21 Nov 2024
https://github.com/mrcl0wnlab/simplereconsubdomain
This is very basic automated recon script tool.
bugbounty hacking hacking-tool python recon
Last synced: 05 Dec 2024
https://github.com/mhmdiaa/waybackrobots
Enumerate old versions of robots.txt paths using Wayback Machine for content discovery
content-discovery recon robots-txt wayback-machine
Last synced: 28 Nov 2024
https://github.com/Bhagavan-Bollina/BugBounty-Dorks
Highly recommended dorks for bug bounty
bug-bounty-dorks bugbounty dorks recon
Last synced: 21 Nov 2024
https://github.com/sec-it/BFAC-Burp-Extension
Burp Extension for BFAC (Advanced Backup-File Artifacts Testing for Web-Applications)
backup-files bugbounty burp-extensions burpsuite pentest recon
Last synced: 21 Nov 2024
https://github.com/mishakorzik/reconcat
A powerfull recon cat tool
information information-gathering linux recon security security-tools termux-hacking
Last synced: 20 Jan 2025
https://github.com/daudmalik06/wmb-scrapper
A small Php package to fetch archive url snapshots from archive.org. Using it you can fetch complete list of snapshot urls of any year or complete list of all years possible.This package can be used to do recon of any target.
hacking hacking-tool php recon snapshot snapshot-urls wayback-archiver wayback-machine wmb-scrapper
Last synced: 28 Oct 2024
https://github.com/remonsec/pri0tx
Automation for Open Threat Exchange
automation bugbounty-tool endpoint enumeration recon
Last synced: 02 Dec 2024
https://github.com/lekssays/kibanarec
A Tool to Extract Open Kibana Instances on Internet and Map them to their Corresponding Organizations for Bug Bounty.
bugbounty kibana recon reconnaissance
Last synced: 10 Nov 2024
https://github.com/davemolk/searcher
Run a base query (plus optional add-ons) through ask, bing, brave, duck duck go, yahoo, and yandex.
go golang infosec osint pentesting pentesting-tools recon research search search-engine security
Last synced: 08 Dec 2024
https://github.com/umair9747/4ofour
A tech enumeration toolkit focused on 404 Not found pages.
bounty bug-bounty bugbounty cybersecurity cybersecurity-tools ethical-hacking infosec linux osint penetration-testing pentesting recon reconnaissance webappsecurity websec websecurity
Last synced: 08 Nov 2024
https://github.com/mathis2001/cert4recon
Simple passive Python Recon tool for subdomains enumeration with crt.sh
bugbounty crt-sh information-gathering osint recon subdomain-enumeration
Last synced: 11 Nov 2024
https://github.com/mrvcoder/cloud_data
Get some useful data from Clouds for your targets
apex-domains bug-bounty bugbounty cloud cname domain ipv4 osint osint-tool recon reconnaissance subdomain subdomain-enumeration subdomain-finder subdomain-scanner
Last synced: 06 Nov 2024
https://github.com/spicesouls/spicescan
Fingerprinting, Port Scanning, Directory Brute Forcing, it's got it all!
enumeration hacking hacking-tools recon scanning tools
Last synced: 21 Nov 2024
https://github.com/krishpranav/wpscan
wpscan is a vulnerability recognition tool in CMS Wordpress developed in Go.
cms-wordpress enumeration go golang recon vulnerability vulnerability-identification vulnerability-scanners wordpress
Last synced: 15 Oct 2024
https://github.com/umair9747/archer
A tool to check for response status codes with ease
bounty bounty-hunting-tools bug-bounty bugbounty bugbounty-tool bugbountytips ethical-hacking hacking hacktoberfest linux penetration-test penetration-testing penetration-testing-framework penetration-testing-tools pentest pentesting recon reconnaissance webapp webapp-security
Last synced: 19 Nov 2024
https://github.com/ajackal/cherrywasp
An 802.11 probe request and beacon sniffer.
beacon-sniffer network network-monitoring probe-requests python recon scapy wireless-network
Last synced: 16 Nov 2024
https://github.com/umutcamliyurt/jsrecon
A powerful tool designed for identifying hidden endpoints and sensitive information within JavaScript files on a website.
endpoint-discovery hacking-tools infosec recon reconnaissance sensitive-data-discovery sensitive-data-exposure
Last synced: 20 Jan 2025
https://github.com/kristofhracza/hank
OSINT toolkit
osint osint-tool osint-toolkit recon reconnaissance search user
Last synced: 04 Dec 2024
https://github.com/mrvcoder/getasn
๐ Get Some Useful Info From Domain/IP/ASN ๐ฅ
asn-lookup bgpview bugbounty cdn cdn-check cidr cli domain information-gathering osint recon reconnaissance
Last synced: 06 Nov 2024
https://github.com/3nock/ote-templates
Community curated list of templates for the OSINT template engine.
attack-surfaces bugbounty fingerprinting osint recon security templates
Last synced: 05 Jan 2025
https://github.com/j3ssie/str-replace
Simple tools to handle string and generate subdomain permutations
bugbounty hacking infosec pentesting permutations recon subdomain
Last synced: 14 Oct 2024
https://github.com/0xpugal/bugbounty_profile
Automate bug bounty recon using bash alias
bash bash-alias bash-profile bugbounty recon reconnaissance
Last synced: 08 Nov 2024
https://github.com/dreadlocked/dircoverrb
Passive subdomains and web directories recon using Bing.
bing directories-scanner osint recon ruby scapper subdomains
Last synced: 20 Nov 2024
https://github.com/random-robbie/yahoo-bug-bounty
List of hosts from yahoo.com
bugbounty recon yahoo yahoo-bug-bounty
Last synced: 05 Jan 2025
https://github.com/ethicalhackingplayground/bcaem
Fast AEM scope gathering tool for all your public and private BugCrowd Programs
aem aem-tools gathering pentesting-tools recon reconnaissance scope
Last synced: 08 Nov 2024
https://github.com/cosad3s/njsdump
Dump paths & pages from Next.js Manifest
bugbounty nextjs recon security
Last synced: 17 Dec 2024
https://github.com/enenumxela/ps.sh
A wrapper around tools used for port scanning(nmap, naabu & masscan), the goal being reducing scan time, increasing scan efficiency and automating the workflow.
bashscript bashscripting bug-bounty bugbounty bugbounty-tool enumeration masscan naabu netwok-mapping nmap open-port-check open-port-check-script penetration-testing penetration-testing-tools pentesting port-scaning recon reconnaissance service-discovery
Last synced: 06 Nov 2024
https://github.com/brant-ruan/icci
Industrial Cybersecurity Conference Index
blackhat conference-talk cybersecurity hitb linux-security-summit offensivecon poc recon
Last synced: 14 Nov 2024
https://github.com/freyxfi/bugrecon
An automated bug hunting tool for comprehensive reconnaissance, including subdomain enumeration, port scanning, vulnerability detection, and report generation.
bugbounty bugbounty-tool bugbountytips bughunting hacktoberfest hacktoberfest-accepted hacktoberfest2024 recon reconnaissance
Last synced: 05 Jan 2025
https://github.com/fasalmbt/reconme
Recon tool
automation bugbounty recon recontool
Last synced: 21 Nov 2024
https://github.com/rly0nheart/recon-sh
Lightweight bash reconnaissance tool
open-source recon reconnaissance
Last synced: 13 Oct 2024
https://github.com/krishpranav/sniff
A Simple Golang Tool That Automates OSINT For Threat Intelligence And Mapping Your Attack Surface.
attack attack-defense attack-surface attack-surfaces bugbounty go golang recon reconnaissance scanner security web-security
Last synced: 15 Oct 2024
https://github.com/n0kovo/gohashmob
Quickly look up hashes in your terminal using the HashMob API ๐ฅ
data-breaches hash-cracking hash-lookup hashcat hashes hashmob osint password-cracking pentesting recon reconnaissance redteam
Last synced: 08 Nov 2024
https://github.com/melbadry9/domain_reg
Check domain availability for registration
bugbounty domain-registration recon
Last synced: 21 Nov 2024
https://github.com/ronin-rb/ronin-web-spider
A collection of common web spidering routines
crawler infosec recon ruby scraper spider utils web websecurity
Last synced: 28 Dec 2024
https://github.com/mathis2001/m4ldu1n-oh
Collection of malduino scripts for pentesters and red teaming.
malduino malduino-scripts malduinoscripts pentest physique recon red-team
Last synced: 09 Jan 2025
https://github.com/0xpugal/pd-recon
A bash script which uses Project Discovery tools for bug bounty reconnaissance.
bugbounty projectdiscovery recon
Last synced: 08 Nov 2024
https://github.com/root4loot/recrawl
A Web URL crawler written in Go
bugbounty crawler discovery enumeration go golang recon reconnaissance web
Last synced: 06 Nov 2024
https://github.com/shazsyed/FavHunt
Favicon based recon for faster fingerprinting of web services
bugbounty fingerprinting hacking recon reconaissance webservices
Last synced: 21 Nov 2024
https://github.com/ronin-rb/ronin-db-activerecord
ActiveRecord backend for the Ronin Database
activerecord activerecord-models database infosec recon ruby security
Last synced: 24 Jan 2025
https://github.com/atiilla/gitrecon
This tool uses the GitHub API to scan repositories owned by a user for email addresses and associated names. It provides options to scan specific repositories and exclude forked repositories. Additionally, you can provide a GitHub API token to increase the rate limit for API requests.
Last synced: 15 Nov 2024
https://github.com/hrbrmstr/cc
โExtract metadata of a specific target based on the results of "commoncrawl.org"
common-crawl domains r r-cyber recon reconnaissance rstats urls
Last synced: 11 Oct 2024
https://github.com/alpkeskin/sitegadget
A cross-platform python based utility for information gathering! Hi, Inspector Gadget...
cross-platform-python information-gathering osint osint-python python python3 recon
Last synced: 23 Nov 2024
https://github.com/mrvcoder/bug-hunting-methodologies
this repo contains some public methodologies which I found from internet (google,telegram,discord,writeups etc..)
bounty bug bugbounty bugbounty-methodology hack hunt information-gathering methodology osint recon reconnaissance
Last synced: 26 Dec 2024
https://github.com/vulnpire/arsenal
Collection of tools, scripts, one-liners, templates, dorks and more
bug-bounty payloads recon red-team
Last synced: 13 Jan 2025
https://github.com/volkansah/nmap-black-python
NMAP-Black-Python is a Python script designed to automate the process of scanning networks for vulnerabilities and open ports using Nmap. This script reads domain names from a text file, scans them using Nmap, and stores the results in a CSV file for easy analysis.
analytics black-python information-gathering nmap nmap-parser nmap-scan-script nmap-scripts osint penetration-testing python python3 recon reconnaissance
Last synced: 09 Dec 2024
https://github.com/superhedgy/sphinx
External Network Reconnaissance script
Last synced: 12 Nov 2024
https://github.com/0xpugal/hacktheweb
Things to do while Hacking/Hunting in Web Applications
bugbounty bugbountytips hack recon subdomain-enumeration vulnerability web webappsec websecurity
Last synced: 31 Dec 2024
https://github.com/torhamdev/death-engine
A powerful recon tool
crawler death-engine directory-search google-dorks hacking-tool information-gathering pentesting pentesting-tools port-scanning python3 recon recon-tools scanner web-hacking web-penetration-testing webhacking webpentest whois
Last synced: 15 Nov 2024
https://github.com/techspence/observer
A blue team tool for watching over domains using bug hunting methodology!
blueteam bughunting-methodology enumeration infosec osint recon
Last synced: 15 Nov 2024
https://github.com/fogsec/gyoithon
GyoiThon is a growing penetration test tool using Machine Learning.
auto-exploit automation framework machine-learning metasploit ml osint penetration-testing python python-2 recon red red-team search team tool tools ttps
Last synced: 22 Jan 2025
https://github.com/tarunkoyalwar/nestle
Match and Extract Nested groups (ex: graphql) using regex with Nestle
automation bugbounty bugbounty-tool go graphql javascript-recon javascript-regex recon regex
Last synced: 13 Oct 2024
https://github.com/mathis2001/showldan
Recon tool using shodan API to automate shodan information gathering process and find juicy stuff during bug hunting.
bug-bounty information-gathering pentest pentesting recon reconnaissance shodan shodan-api shodan-python
Last synced: 11 Nov 2024
https://github.com/ariary/jsextractor
Fastly gather all JavaScript from url (CLi+TUI)
bug-bounty cli extract extractor html-parser javascript js parser pentest recon tui web-pentest xss
Last synced: 11 Nov 2024
https://github.com/rix4uni/SubDog
subdog is a subdomain enumeration tools, this tool collect number of different sources to create a list of root subdomains
recon reconnaissance subdomain subdomain-enumeration wayback-machine
Last synced: 21 Nov 2024
https://github.com/a3r0id/tryhackme-sakura-room-writeup
A complete writeup on TryHackMe.com's Sakura Room by The OSINT Dojo.
cryptocurrency cryptocurrency-exchanges geoint metadata-extraction osint recon reconnaissance research sakura social-media socmint tryhackme tryhackme-writeups
Last synced: 24 Dec 2024
https://github.com/0x4f53/secretsnitch
A lightning-fast, modular secret scanner
artificial-intelligence blueteam chatgpt concurrency golang gpt openai-api pentesting pentesting-tools recon reconnaissance redteam secrets secrets-management security security-tools
Last synced: 02 Nov 2024
https://github.com/ronin-rb/ronin-nmap
A Ruby library for working with nmap.
hacktoberfest infosec network-scanning nmap nmap-commands nmap-xml recon ruby
Last synced: 28 Dec 2024
https://github.com/mhmdiaa/acumen
A clean UI with a modular structure to enhance security researchers' ability to work with data
penetration-testing penetration-testing-tools pentesting recon security security-tools user-interface visualization web-application-security
Last synced: 28 Nov 2024
https://github.com/ninoseki/ryo
Yet another website recon tool powered by Ruby
Last synced: 18 Oct 2024
https://github.com/sweetsoftware/vhostmap
Find virtual hosts (vhosts) from IP addresses and hostnames
bug-bounty bugbounty bugbounty-tool hostmapper hostnames ip osint penetration-testing python3 recon reconnaissance vhost vhosts virtual-hosts
Last synced: 08 Nov 2024
https://github.com/mathis2001/twittosint
A simple Twitter OSINT tool written in python
Last synced: 11 Nov 2024