716 Open source projects that are alternatives of or similar to Awesome Asset Discovery

A tool to hunt for publicly accessible DigitalOcean Spaces

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Related subdomains finder

A Tool for Domain Flyovers

👀 Some of my favorite OSINT tools.

Automated network asset, email, and social media profile discovery and cataloguing.

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

Maryam: Open-source Intelligence(OSINT) Framework

An advanced tool for email reconnaissance

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

Semi-automatic OSINT framework and package manager

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Links for the OSINT Team

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

Yar is a tool for plunderin' organizations, users and/or repositories.

Intelligence and Reconnaissance Package/Bundle installer.

Enumerate information from NTLM authentication enabled web endpoints 🔎

OSINT Project

E-mails, subdomains and names Harvester - OSINT

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Making Favicon.ico based Recon Great again !

Pentest: Subdomains enumeration tool for penetration testers.

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Nuubi Tools (Information-ghatering|Scanner|Recon.)

LinkedinScraper is an another information gathering tool written in python. You can scrape employees of companies on Linkedin.com and then create these employee names, titles and emails.

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

bingip2hosts is a Bing.com web scraper that discovers websites by IP address

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

Do some quick reconnaissance on a domain-based web-application

Port scanning and domain utility.

Nuclei templates for K8S security scanning

Selenium powered Python script to automate searching for vulnerable web apps.

Maintained collection of OSINT related resources. (All Free & Actionable)

This repository created for personal use and added tools from my latest blog post.

Infosec Wordlists

An automated target reconnaissance pipeline.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

An automated approach to performing recon for bug bounty hunting and penetration testing.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

OSINT

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

OneForAll是一款功能强大的子域收集工具

🔎 Find usernames across social networks

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

Network footprint scanner platform. Discover domains and run your custom checks periodically.

Find emails of Github users

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

OSINT Swiss Army Knife

Sifter aims to be a fully loaded Op Centre for Pentesters

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.