存活探测
| 名称 | 备注 | 链接 |
|---|---|---|
| httpx | https://github.com/projectdiscovery/httpx | |
| Web-SurvivalScan | 导入url文本检测 | https://github.com/AabyssZG/Web-SurvivalScan |
目录遍历
| 名称 | 备注 | 链接 |
|---|---|---|
| Dirsearch | https://github.com/maurosoria/dirsearch | |
| Dirmap | https://github.com/H4ckForJob/dirmap |
子域探测
端口扫描
在线工具
| 名称 | 备注 | 链接 |
|---|---|---|
| nmap在线扫描 | http://nmap.online-domain-tools.com/ | |
离线工具
| 名称 | 备注 | 链接 |
|---|---|---|
| Masscan | https://github.com/robertdavidgraham/masscan | |
| Nmap | https://nmap.org/man/zh/index.html https://nmap.org/ |
旁站查询
| 名称 | 备注 | 链接 |
|---|---|---|
| 查旁站 | https://chapangzhan.com/ |
框架识别
| 名称 | 备注 | 链接 |
|---|---|---|
| 在线cms指纹识别 | 在线 | http://whatweb.bugscaner.com/look |
| 源小印CMS识别 | 在线 | https://c.yuanxiaoyin.com/ |
| 网络设备默认口令查询 | 在线 | https://www.shentoushi.top/av/ |
| Ehole | 离线 | https://github.com/EdgeSecurityTeam/EHole |
| Builtwith | 在线 | https://buildwith.com/ |
| Finger | 离线 | https://github.com/EASY233/Finger |
| gradejs | 插件 | https://github.com/gradejs/gradejs |
| onlinetools | 在线|离线 | https://github.com/iceyhexman/onlinetools |
| supercookie | 离线 | https://github.com/jonasstrehle/supercookie |
| TideFinger | 离线 | https://github.com/TideSec/ |
| TideFinger | 在线 | http://finger.tidesec.net/ |
| WAFW00F | 离线 | https://github.com/EnableSecurity/wafw00f |
| Wappalyzer | 插件 | https://github.com/wappalyzer/wappalyzer |
| webscan | 在线 | https://www.webscan.cc/ |
| WhatWeb | 离线 | https://github.com/urbanadventurer/whatweb |
| WhatWeb | 在线 | https://whatweb.net/ |
| struts2_check | 离线|Struts2 | https://github.com/coffeehb/struts2_check |
接口探测
| 名称 | 备注 | 链接 |
|---|---|---|
| JSFinder | https://github.com/Threezh1/JSFinder | |
| leakinfo_finder | https://github.com/Carrypan2022/leakinfo_finder | |
| URLFinder | https://github.com/pingc0y/URLFinder | |
| Webpackfind | webpack信息 | https://github.com/xz-zone/Webpackfind |
Dork
| 名称 | 备注 | 链接 |
|---|---|---|
| github-dorks | dorks | https://github.com/techgaun/github-dorks |
资产测绘
| 名称 | 备注 | 链接 |
|---|---|---|
| 红客 | https://www.hong.ke | |
| 云悉指纹 | https://www.yunsee.cn/ | |
| 鹰图平台 | https://hunter.qianxin.com/ | |
| 零零信安 | https://0.zone/ | |
| 00sec | https://0.zone/ | |
| 360Quake | https://quake.360.cn/quake/#/index | |
| FoFa | https://fofa.info/ | |
| intelx | https://intelx.io/ | |
| shodan | https://www.shodan.io | |
| wayback machine | 网页历史记录 | https://web.archive.org/ |
| zoomeye | https://www.zoomeye.org/ |
综合探测
从多数资产中查找重点资产
| 名称 | 备注 | 链接 |
|---|---|---|
| 14Finger | https://github.com/b1ackc4t/14Finger | |
| AngryIP | https://angryip.org/ | |
| BanLi | https://github.com/Goqi/Banli | |
| dnsenum | https://github.com/fwaeytens/dnsenum | |
| EHole | 棱洞 | https://github.com/EdgeSecurityTeam/EHole |
| ENScan | 企业信息查询 | https://github.com/wgpsec/ENScan |
| Hosts_scan | IP域名碰撞 | https://github.com/fofapro/Hosts_scan |
| nbtscan | http://www.unixwiz.net/tools/nbtscan.html | |
| Polaris | https://github.com/doimet/Polaris | |
| pentest-tools | 谷歌语法利用 | https://pentest-tools.com/information-gathering/google-hacking |
| SecurityServiceBox | https://github.com/givemefivw/SecurityServiceBox | |
| WanLi | https://github.com/ExpLangcn/WanLi |
资产巡航
自动化信息收集的系统
| 名称 | 备注 | 链接 |
|---|---|---|
| ARL | 资产灯塔 | https://github.com/TophantTechnology/ARL |
| ARL-plus-docker | ARL修改版 | https://github.com/ki9mu/ARL-plus-docker |
| AsamF | https://github.com/Kento-Sec/AsamF | |
| DBJ | 大宝剑 | https://github.com/wgpsec/DBJ |
| EyeJo | https://github.com/ice-doom/EyeJo | |
| linbing | 临兵 | https://github.com/taomujian/linbing |
| Perun | https://github.com/WyAtu/Perun | |
| SZhe_Scan | 碎遮 | https://github.com/Cl0udG0d/SZhe_Scan |
| ScopeSentry | https://scope-sentry.top/ https://github.com/Autumn-27/ScopeSentry |
|
| TrackRay | 溯光 | https://github.com/iSafeBlue/TrackRay |
| xunfeng | 巡风 | https://github.com/ysrc/xunfeng |
| Yosakura | https://github.com/m0sway/Yosakura |
爬虫框架
| 名称 | 备注 | 链接 |
|---|---|---|
| AiSpider | https://github.com/xiaosimao/AiSpider | |
| feapder | https://github.com/Boris-code/feapder |
DNSLog平台
| 名称 | 备注 | 链接 |
|---|---|---|
| censys | 需注册 | https://censys.io/ |
| dnslog | 无需注册 | http://www.dnslog.cn/ |
| dnslog | 需搭建 | https://github.com/bugscanteam/dnslog/ |
| dnslog | 需登录 | http://dnslog.pw/login |
| eyes.sh | 需搭建 | https://github.com/lijiejie/eyes.sh |
| eyes.sh | 需登录 | http://eyes.sh/dns/ |
| interactsh | 可搭建dns服务器 也可使用本地客户端获取dnslog |
https://github.com/projectdiscovery/interactsh |
归属查询
网址提取
| 名称 | 备注 | 链接 |
|---|---|---|
| crawlergo | https://github.com/Qianlitp/crawlergo | |
| gau | https://github.com/lc/gau | |
| gospider | https://github.com/jaeles-project/gospider | |
| Jbin-website-secret-scraper | 收集URL并查询API密钥信息 各厂商的API密钥构成 |
https://github.com/h33tlit/Jbin-website-secret-scraper https://github.com/h33tlit/secret-regex-list |
| RAD | https://github.com/chaitin/rad | |
| URLFinder | 获取URL、JS信息 | https://github.com/pingc0y/URLFinder |
威胁情报
| 名称 | 备注 | 链接 |
|---|---|---|
| 微步在线 | https://x.threatbook.cn/ | |
| 360威胁情报中心 | https://ti.360.net/#/homepage |
网页快照
| 名称 | 备注 | 链接 |
|---|---|---|
| archive | 网页记录 | http://archive.org/ |
| commoncrawl | 爬虫记录 | https://commoncrawl.org/ |