Reconnaissance

ReconnaissanceSocial Engineering

Visit Website

Social Analyzer

Details

Social Analyzer: API, CLI, and Web App for analyzing and finding a person's profile across 1000+ social media websites.

External

ReconnaissanceRed Team OperationsInfrastructure Security

Visit Website

SpiderFoot

Details

SpiderFoot automates OSINT for threat intelligence and attack surface mapping, integrating diverse data sources for comprehensive analysis.

External

Bug BountyReconnaissance

Visit Website

Subfinder

Details

Subfinder is a fast passive subdomain enumeration tool for websites, leveraging online sources to discover valid subdomains.

Bug Bounty OSINT

Infrastructure SecurityReconnaissanceReverse Engineering

Visit Website

THC-Hydra

Details

THC-Hydra is a fast network login cracker supporting numerous protocols; a valuable tool for security researchers and consultants.

Bruteforce

Reconnaissance

Visit Website

Voyage

Details

Voyage is a Rust-based subdomain enumeration tool with active/passive methods, SQLite progress tracking, and a real-time terminal UI.

Bug Bounty Web External

Application SecurityReconnaissance

Visit Website

WAFW00F

Details

WAFW00F identifies and fingerprints Web Application Firewall (WAF) products protecting a website using various detection methods.

Web

Reconnaissance

Visit Website

Wappalyzer

Details

Wappalyzer is a web technology profiler that reveals the software stack behind websites for reconnaissance and competitive analysis.

External Web

Reconnaissance

Visit Website

Wayback Machine

Details

The Wayback Machine archives billions of web pages, allowing users to view historical snapshots and track changes over time.

OSINT

Reconnaissance

Visit Website

Web-Check

Details

Web-Check is a powerful open-source OSINT tool for analyzing website configurations, security headers, DNS, and more.

OSINT

Reconnaissance

Visit Website

ZoomEye

Details

ZoomEye is a cyberspace search engine for discovering and analyzing internet-connected devices, offering tools for asset discovery and vulnerability analysis.

External

Reconnaissance

Visit Website

crt.sh

Details

crt.sh is a Certificate Transparency (CT) log search tool that allows users to find SSL/TLS certificates issued for specific domains or organizations.

OSINT

Application SecurityReconnaissance

Visit Website

ffuf

Details

ffuf is a fast web fuzzer written in Go, designed for content discovery and web application security testing.

Web Bug Bounty External

Category

Explore by categories

All

AI Security

API Security

Application Security

Bug Bounty

Certifications

Cloud Security

Exploit Development

Infrastructure Security

Physical Security

Reconnaissance

Red Team Operations

Reporting

Reverse Engineering

Security Firms

Social Engineering

Training

Vulnerability Intelligence

Wireless Security

Social Analyzer

SpiderFoot

Subfinder

THC-Hydra

Voyage

WAFW00F

Wappalyzer

Wayback Machine

Web-Check

ZoomEye

crt.sh

ffuf