RECONDB_

Automated recon framework chaining 45+ tools for full attack surface mapping.

Metasploit-style web reconnaissance framework with modular architecture.

OSINT automation platform integrating 200+ data sources with visual graphs.

Fast passive subdomain discovery using 40+ online sources.

OWASP attack surface mapping with passive, active, and brute-force enumeration.

Lightweight Go tool to find related domains and subdomains.

Fast multi-purpose DNS toolkit for bulk resolution and record enumeration.

DNS reconnaissance tool for locating non-contiguous IP space and hostnames.

Industry-standard network discovery and security auditing tool.

Internet-scale port scanner — 10 million packets/second from a single machine.

Fast and reliable Go-based port scanner by ProjectDiscovery.

Incredibly fast OSINT crawler extracting URLs, emails, keys, and subdomains.

Fast web crawler for discovering endpoints and assets within web applications.

Next-generation crawling framework with JavaScript parsing support.

Collect a dossier on a person by username — checks 3,000+ sites, no API keys needed.

Hunt down social media accounts by username across 400+ social networks.

Check if an email is attached to accounts on 120+ sites using password-reset flows.

Email OSINT and password breach hunting tool with local and API-based search.

Advanced international phone number scanner — carrier, location, VoIP detection.

SAST tool for detecting hardcoded secrets, API keys, and tokens in git repos.

Searches git repos for high entropy strings and secrets deep in commit history.

Uses GitHub Search API with dork lists to find sensitive information on GitHub.

Fast template-based vulnerability scanner with 9,000+ community templates.

Comprehensive web server scanner testing for 6,700+ dangerous files and misconfigs.

Gather emails, subdomains, virtual hosts, open ports, and employee names from public sources.

Multi-target OSINT scanner for emails, domains, IPs, and SSL analysis.

Advanced Twitter scraping without API — scrape tweets, followers, and more.

Download Instagram posts, stories, metadata, and profile information.

Scrape URLs across multiple .onion search engines (requires Tor).

Read, write, and edit metadata in images, videos, audio, and documents.

Extract metadata from public documents (PDF, DOC, XLS, PPT) belonging to a target.

Complete suite of tools to assess WiFi network security — capture, crack, inject.

Multi-cloud OSINT tool for enumerating public resources in AWS, Azure, and GCP.

Find open S3 buckets and dump their contents.

Automated SQL injection detection and exploitation tool.

XSS detection suite with intelligent payload generator and fuzzing engine.

Brute-force URIs, DNS subdomains, virtual hosts, and open S3 buckets.

Fuzz Faster U Fool — fast web fuzzer for directories, parameters, and headers.