Reconnaissance Tools

808 tools
phishing_kits
phishing_kits
Free Reconnaissance Social Engineering

Exposing phishing kits seen from phishunt.io
phishstats-api-network
phishstats-api-network
Open Source Forensics Reconnaissance

Visualize networks of phishing by querying the phishstats.info API
phoneinfoga
phoneinfoga
Open Source Reconnaissance

Information gathering framework for phone numbers
phoneintel
phoneintel
Open Source Reconnaissance

PhoneIntel is an OSINT tool for retrieving detailed information about phone numbers.
Photon
Photon
Open Source Reconnaissance Web Application

Fast web crawler designed for OSINT. Extracts URLs, emails, social media accounts, Amazon S3 buckets, Bitcoin wallets, and files from a targ…
Photon
Photon
Open Source Reconnaissance

Incredibly fast crawler designed for OSINT.
Picarta-API
Picarta-API
Open Source Reconnaissance

Picarta AI Image Geolocalization API.
Pinakastra
Pinakastra
Free Reconnaissance Web Application

AI-powered pentesting framework with automated recon and exploitation. Multi-source subdomain discovery, active vuln testing (XSS/SQLi/SSRF/…
Pip-Intel
Pip-Intel
Open Source Reconnaissance

PIP-INTEL is an OSINT (Open Source Intelligence) tool designed using various open-source tools and pip packages.
poopak
poopak
Free Reconnaissance

POOPAK - TOR Hidden Service Crawler
postleaks
postleaks
Open Source Reconnaissance

Search for sensitive data in Postman public library.
postmaniac
postmaniac
Open Source Reconnaissance

Postman OSINT tool to extract creds, token, username, email & more from Postman Public Workspaces
pretender
pretender
Open Source Reconnaissance

Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
probiv_i_OSINT_instrumenti
probiv_i_OSINT_instrumenti
Free Reconnaissance

Набор инструментов и Телеграм боты для пробива, OSINT и поиск информации, а также анализа данных.
Probiv_telegram
Probiv_telegram
Free Reconnaissance

Набор Telegram-ботов и OSINT-инструментов для пробива по номеру телефона, проверки автомобиля по VIN и госномеру, поиска по фотографии, пров…
Project-Deep-Focus
Project-Deep-Focus
Open Source Exploitation Reconnaissance

Your personal 'Mini Shodan'. A high-performance network reconnaissance engine designed for massive scale asset discovery. Specializes in ide…
Proxmark3
Proxmark3
Open Source Reconnaissance

Swiss army knife for RFID security research. Reads, writes, emulates, sniffs, and brute-forces RFID/NFC tags including HID, EM4100, Mifare C…
public-bugbounty-programs
public-bugbounty-programs
Open Source Reconnaissance

Community curated list of public bug bounty and responsible disclosure programs.
puncia
puncia
Open Source Exploitation Reconnaissance

Panthera(P.)uncia - Official CLI utility for Osprey Vision, Subdomain Center & Exploit Observer.
puredns
puredns
Open Source Reconnaissance

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entrie…
pwn
pwn
Open Source Reconnaissance Reverse Engineering

PWN is an open security automation framework that aims to stand on the shoulders of security giants, promoting trust and innovation.
pwnedOrNot
pwnedOrNot
Open Source Reconnaissance

OSINT Tool for Finding Passwords of Compromised Email Addresses
PyADRecon
PyADRecon
Open Source Post-Exploitation Reconnaissance

Python3 implementation of ADRecon with support for NTLM and Kerberos authentication querying LDAP. Generates individual CSV files and a sing…
PyADRecon-ADWS
PyADRecon-ADWS
Open Source Post-Exploitation Reconnaissance

An implementation of PyADRecon using ADWS instead of LDAP. Generates individual CSV files and a single XSLX + HTML report about your AD doma…