AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.
☆1,400Apr 8, 2024Updated last year
Alternatives and similar repositories for AttackSurfaceMapper
Users that are interested in AttackSurfaceMapper are comparing it to the libraries listed below
Sorting:
- A Modern Orchestration Engine for Security☆6,116Updated this week
- HostHunter a recon tool for discovering hostnames using OSINT techniques.☆1,156Mar 30, 2023Updated 2 years ago
- All In One Web Recon☆2,666Apr 30, 2025Updated 10 months ago
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆2,029Jul 12, 2025Updated 7 months ago
- a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations…☆536Mar 27, 2022Updated 3 years ago
- Mass scan IPs for vulnerable services☆1,046Feb 17, 2022Updated 4 years ago
- Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.☆1,547Mar 7, 2024Updated last year
- Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term o…☆2,624Dec 13, 2025Updated 2 months ago
- Enumerate information from NTLM authentication enabled web endpoints 🔎☆504Sep 23, 2025Updated 5 months ago
- Automation for internal Windows Penetrationtest / AD-Security☆3,644Aug 28, 2025Updated 6 months ago
- Credentials gathering tool automating remote procdump and parse of lsass process.☆782Jun 20, 2020Updated 5 years ago
- Attack Surface Management Platform☆9,418Feb 15, 2026Updated 2 weeks ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆10,150Sep 29, 2025Updated 5 months ago
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆8,497Nov 16, 2025Updated 3 months ago
- OSINT tools and more but without API key☆1,482Feb 15, 2026Updated 2 weeks ago
- Wiki to collect Red Team infrastructure hardening resources☆4,450Oct 1, 2025Updated 5 months ago
- The Offensive Manual Web Application Penetration Testing Framework.☆1,849Apr 19, 2023Updated 2 years ago
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,690Feb 20, 2026Updated last week
- In-depth attack surface mapping and asset discovery☆14,193Updated this week
- The Swiss Army knife for automated Web Application Testing☆2,323May 8, 2024Updated last year
- Network Pivoting Toolkit☆457Aug 26, 2023Updated 2 years ago
- File upload vulnerability scanner and exploitation tool.☆3,300May 8, 2025Updated 9 months ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,350Sep 30, 2024Updated last year
- Automated Adversary Emulation Platform☆6,781Updated this week
- List of Awesome Asset Discovery Resources☆2,377Jan 22, 2025Updated last year
- Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient☆1,556Oct 17, 2022Updated 3 years ago
- A high performance offensive security tool for reconnaissance and vulnerability scanning☆3,516Jun 10, 2025Updated 8 months ago
- A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.☆1,780Nov 24, 2024Updated last year
- AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.☆5,917Jan 28, 2026Updated last month
- A collection of custom security tools for quick needs.☆3,284May 1, 2023Updated 2 years ago
- 🔱 Powerfull XSS Scanning and Parameter analysis tool&gem☆1,357Updated this week
- A swiss army knife for pentesting networks☆9,082Dec 6, 2023Updated 2 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆397Apr 17, 2020Updated 5 years ago
- Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to …☆761Sep 23, 2024Updated last year
- Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload cre…☆3,824Updated this week
- Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…☆3,953Feb 20, 2026Updated last week
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,874Aug 18, 2023Updated 2 years ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,650Jan 5, 2026Updated last month
- Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email☆4,900Aug 15, 2023Updated 2 years ago