Open in app

Sign in

Write

Sign in

Member-only story

Comprehensive Reconnaissance Tools for Red Teaming and OSINT Operations

Sacony Chukwu
2 min readJan 5, 2025

--

Reconnaissance

Active Intelligence Gathering

EyeWitness

Is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

https://github.com/ChrisTruncer/EyeWitness

AWSBucketDump

Is tool to quickly enumerate AWS S3 buckets to look for loot.

https://github.com/jordanpotti/AWSBucketDump

AQUATONE

Ia a set of tools for performing reconnaissance on domain names.

https://github.com/michenriksen/aquatone

spoofcheck

Is a program that checks if a domain can be

spoofed from. The program checks SPF and DMARC records for weak configurations that allow spoofing.

https://github.com/BishopFox/spoofcheck

Nmap

Is used to discover hosts and services on a computer network, thus building a “map” of the

network.

https://github.com/nmap/nmap

dnsrecon

Is a tool DNS Enumeration Script.

https://github.com/darkoperator/dnsrecon

Passive Intelligence Gathering

--

--

Sacony Chukwu
Sacony Chukwu

Written by Sacony Chukwu

14 Followers
6 Following

Certified Ethical Hacker & Penetration Tester | Cybersecurity Enthusiast | Future Author of cybersecurity books | Cyber Security Consultant & Scripting Expert

No responses yet

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams