| Name | Description | URL |
|---|---|---|
| Amass | The OWASP Amass Project performs network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques. | https://github.com/OWASP/Amass |
| Censys | Attack Surface Monitoring | https://search.censys.io |
| crt.sh | Certificate Monitoring | https://crt.sh |
| DNSdumpster | DNSdumpster.com is a FREE domain research tool that can discover hosts related to a domain. | https://dnsdumpster.com |
| dnsx | Fast and multi-purpose DNS toolkit allow to run multiple DNS queries. | https://github.com/projectdiscovery/dnsx |
| IPinfo | The trusted source for IP address data. | https://ipinfo.io |
| Knock Subdomain Scan | Knockpy is a python3 tool designed to quickly enumerate subdomains on a target domain through dictionary attack. | https://github.com/guelfoweb/knock |
| naabu | Naabu is a port scanning tool written in Go that allows you to enumerate valid ports for hosts in a fast and reliable manner. | https://github.com/projectdiscovery/naabu |
| Nmap | Network Scanner | https://github.com/nmap/nmap |
| proxify | Swiss Army Knife Proxy for rapid deployments. | https://github.com/projectdiscovery/proxify |
| subfinder | Fast passive subdomain enumeration tool. | https://github.com/projectdiscovery/subfinder |
| Name | Description | URL |
|---|---|---|
| DeHashed | Breach Monitoring | https://dehashed.com |
| dehashQuery | This is a script that can be used in conjunction with dehashed.com. Dehashed allows anyone who has an API key to query their API for credentials that may exist within a breach database. This script simply uses the dehashed API and sorts the information returned. | https://github.com/grahamhelton/dehashQuery/blob/main/dehashQuery.sh |
| Exploit-DB - Google Hacking Database | Exploit Database Google Dorks | https://www.exploit-db.com/google-hacking-database |
| GHunt | GHunt is a modulable OSINT tool designed to evolve over the years, and incorporates many techniques to investigate Google accounts, or objects. | https://github.com/mxrch/GHunt |
| hunter | Hunter lets you find professional email addresses in seconds and connect with the people that matter for your business. | https://hunter.io |
| Intelligence X | OSINT Search Engine | https://intelx.io |
| linkedin2username | Generate username lists from companies on LinkedIn. | https://github.com/initstring/linkedin2username |
| Sherlock | Hunt down social media accounts by username across social networks. | https://github.com/sherlock-project/sherlock |