491 Open source projects that are alternatives of or similar to Recon Raven

All about bug bounty (bypasses, payloads, and etc)

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

“玄魂工作室--安全圈” 知识星球内资源汇总

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Open-Source Security Architecture | 开源安全架构

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

Making Favicon.ico based Recon Great again !

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能

E-mails, subdomains and names Harvester - OSINT

Subdomain Enumeration and Scanner

The Last Web Recon Tool You'll Need

OSINT

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

shuffleDNS is a wrapper around massdns written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.

平常看到好的渗透hacking工具和多领域效率工具的集合

Maryam: Open-source Intelligence(OSINT) Framework

🔎 Hunt down social media accounts by username across social networks

Chromepass - Hacking Chrome Saved Passwords

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

People tracker on the Internet: OSINT analysis and research tool by Jose Pino

network reconnaissance toolkit

👁 (s)AINT is a Spyware Generator for Windows systems written in Java. [Discontinued]

Secure, Unified, Powerful and Extensible Rust Android Analyzer

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

Personal CTF Toolkit

ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.

Web path scanner

hack tools

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

💡 A hinting engine for the web

OWASP ZAP Add-ons

A friendly car security exploration tool for the CAN bus

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Bandit is a tool designed to find common security issues in Python code.

Searching sensitive files and contents in GitHub associated to company name or other key words

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

A (partial) Python rewriting of PowerSploit's PowerView

Track Location With Live Address And Accuracy In Termux

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Automated network asset, email, and social media profile discovery and cataloguing.

Web Scan Lazy Tools - Python Package

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Complete Listing and Usage of Tools used for Ethical Hacking

A Suite of Tools written in Python for wireless auditing and security testing.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

An automated approach to performing recon for bug bounty hunting and penetration testing.

An automated target reconnaissance pipeline.

Attack Surface Management Platform | Sn1perSecurity LLC

the free firefox extions of hackbar v2.1.3 v2.2.9 v2.3.1,hackbar 插件未收费的免费版本。适用于chrome浏览器的HackBar-v2.2.6.zip,HackBar-v2.3.1.zip

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.