Top 23 Recon Open-Source Projects

• spiderfoot

  19 11,723 6.6 Python

  SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

• amass

  19 11,185 6.9 Go

  In-depth attack surface mapping and asset discovery

  

Project mention: amass VS dmut - a user suggested alternative | libhunt.com/r/amass | 2023-11-29

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• theHarvester

  19 10,319 9.4 Python

  E-mails, subdomains and names Harvester - OSINT

Project mention: Search for sensitive data using theHarvester and h8mail tools | dev.to | 2023-12-01

• OneForAll

  0 7,676 2.4 Python

  OneForAll是一款功能强大的子域收集工具

• rengine

  4 6,737 9.5 Python

  reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Project mention: Any self-host FOSS suites for running phishing testing campaigns? | /r/selfhosted | 2023-05-21

I couldn't find anything named reEngine, but I found reNgine ( https://yogeshojha.github.io/rengine/ ) which I think is what you meant.

• scan4all

  1 5,231 7.7 Go

  Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

  

• reconftw

  3 5,231 9.3 Shell

  reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Project mention: Automated recognition frameworks? | /r/bugbounty | 2023-06-23

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• WhatWeb

  1 5,096 0.0 Ruby

  Next generation web scanner

• Arjun

  2 4,838 6.7 Python

  HTTP parameter discovery suite.

• hakrawler

  3 4,230 0.0 Go

  Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

• h8mail

  11 3,884 0.0 Python

  Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Project mention: Search for sensitive data using theHarvester and h8mail tools | dev.to | 2023-12-01

• bbot

  5 3,704 9.8 Python

  A recursive internet scanner for hackers.

  

Project mention: [GitHub Action]: Wrappers for sqlmap, bbot and nikto | /r/cybersecurity | 2023-05-29

Its not that much of a tool than wrappers of few awesome tools that most of you probably know and use today - sqlmap, bbot and nikto.

• discover

  3 3,315 8.2 PowerShell

  Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

Project mention: Do you know a Kali tool to find an username with just the name of the person ? | /r/Kalilinux | 2023-07-03

https://github.com/leebaird/discover try this

• WinPwn

  1 3,177 5.3 PowerShell

  Automation for internal Windows Penetrationtest / AD-Security

• awesome-oneliner-bugbounty

  2 2,429 0.0

  A collection of awesome one-liner scripts especially for bug bounty tips.

• uncover

  3 2,239 7.9 Go

  Quickly discover exposed hosts on the internet using multiple search engines.

  

Project mention: Uncover: Quickly find exposed hosts using multiple search engines | news.ycombinator.com | 2023-12-30

• CloudFail

  1 2,120 2.0 Python

  Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

• reconspider

  1 1,902 0.0 Python

  🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

• Awesome-Asset-Discovery

  2 1,867 2.5

  List of Awesome Asset Discovery Resources

  

• sn0int

  1 1,847 5.2 Rust

  Semi-automatic OSINT framework and package manager

• puredns

  3 1,558 4.9 Go

  Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

• x8

  1 1,479 6.3 Rust

  Hidden parameters discovery suite

• urlhunter

  2 1,463 2.7 Go

  a recon tool that allows searching on URLs that are exposed via shortener services

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Recon related posts

• Flutter Spy, a tool to reverse engineer and extract data from a Flutter app
  1 project | news.ycombinator.com | 13 Dec 2023
• Explore, analyze, and gain valuable data & insights from reverse-engineered Flutter apps with Flutter-Spy
  1 project | /r/ReverseEngineering | 11 Dec 2023
• Search for sensitive data using theHarvester and h8mail tools
  2 projects | dev.to | 1 Dec 2023
• amass VS dmut - a user suggested alternative
  2 projects | 29 Nov 2023
• In-depth attack surface mapping and asset discovery
  1 project | news.ycombinator.com | 15 Nov 2023
• Show HN: SpiderSuite version 1.0.4. Whats new?
  1 project | news.ycombinator.com | 17 Sep 2023
• Introducing OSINT Template Engine: An open source OSINT Tool.
  1 project | /r/websecurityresearch | 12 Jul 2023
• A note from our sponsor - SaaSHub
  www.saashub.com | 27 Apr 2024

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com