496 Open source projects that are alternatives of or similar to Attacksurfacemapper

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

operative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules.

OSINT Project

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Maryam: Open-source Intelligence(OSINT) Framework

👀 Some of my favorite OSINT tools.

A passive subdomain finder

OSINT Framework

E-mails, subdomains and names Harvester - OSINT

🔎 Find usernames across social networks

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

An OSINT tool that allows you to draw out relationships between people on LinkedIn via endorsements/skills.

OSINT tool - gets data from services like shodan, censys etc. in one app

Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock

A tool to hunt for publicly accessible DigitalOcean Spaces

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

A Github organization reconnaissance tool.

Enumerate information from NTLM authentication enabled web endpoints 🔎

A high performance offensive security tool for reconnaissance and vulnerability scanning

The official wrapper for spyse.com API, written in Go, aimed to help developers build their integrations with Spyse.

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

Automated network asset, email, and social media profile discovery and cataloguing.

A Tool for Domain Flyovers

The Offensive Manual Web Application Penetration Testing Framework.

OSINT

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Weaponizing Live CT logs for automated monitoring of assets

HostHunter a recon tool for discovering hostnames using OSINT techniques.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

A Tool for Domain Flyovers

An OSINT tool to gather information about the real owner of a phone number

Information gathering tool - OSINT

Intelligence and Reconnaissance Package/Bundle installer.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Yar is a tool for plunderin' organizations, users and/or repositories.

ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Making Favicon.ico based Recon Great again !

List of Awesome Asset Discovery Resources

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

Related subdomains finder

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

🔎 Find usernames and download their data across social media.

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

Yet Another LInkedIn Scraper...

Do some quick reconnaissance on a domain-based web-application

LinkedinScraper is an another information gathering tool written in python. You can scrape employees of companies on Linkedin.com and then create these employee names, titles and emails.

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Discover Your Attack Surface!

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

bingip2hosts is a Bing.com web scraper that discovers websites by IP address

Fully automated offensive security framework for reconnaissance and vulnerability scanning

🔎 Hunt down social media accounts by username across social networks