# Automated Bug Bounty Reconnaissance Frameworks > Search results for `automate the full recon workflow for bug bounty targets` on awesome-repositories.com. 116 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/automate-the-full-recon-workflow-for-bug-bounty-targets **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/automate-the-full-recon-workflow-for-bug-bounty-targets).** ## Results - [git-bug/git-bug](https://awesome-repositories.com/repository/git-bug-git-bug.md) (9,909 ⭐) — git-bug is a distributed bug tracker and local-first issue manager that stores bug reports and comments as versioned objects directly within a Git repository. It integrates project management by coupling issue history with source code, using Git as the transport layer to synchronize task data across multiple local clones. The system enables distributed bug tracking without relying on a central server or external hosting provider. It utilizes a local indexing cache to provide near-instant searching and filtering of issue metadata without network latency. The project further supports synchronizing local issue data with external tracking services through service adapters to maintain consistent task status across different platforms. - [1n3/sn1per](https://awesome-repositories.com/repository/1n3-sn1per.md) (10,049 ⭐) — Sn1per is a vulnerability management platform and penetration testing orchestrator designed to automate reconnaissance, vulnerability scanning, and exploit verification. It functions as a dockerized security toolkit that coordinates multiple tools into a unified automated pipeline to identify security flaws across network and web assets. The platform features an attack surface manager for discovering internet-facing assets through OSINT, DNS enumeration, and certificate transparency. It distinguishes itself with an AI-powered security analyzer that uses large language models to summarize scan outputs and triage vulnerabilities, alongside an active exploit validation engine to eliminate false positives. Its broader capabilities cover mobile application auditing for Android and iOS binaries, dark web leak monitoring, and asset risk assessment. The system provides a security analysis dashboard for managing multi-user workspaces, generating structured reports, and configuring security tools via a web interface. The environment is deployed using containers and persistent volumes to ensure a reproducible runtime. - [actions/starter-workflows](https://awesome-repositories.com/repository/actions-starter-workflows.md) (11,694 ⭐) — This project provides a comprehensive library of standardized workflow templates designed to automate continuous integration, deployment, and repository maintenance tasks. By offering a collection of pre-configured blueprints, it enables developers to initialize and manage automated pipelines for diverse programming languages and platforms using declarative configuration files. The repository functions as a centralized resource for bootstrapping automation, allowing teams to inject repository-specific metadata and dynamic variables into standardized templates. This approach ensures consistent development practices across projects while reducing the manual effort required to set up complex build, test, and delivery sequences. Beyond core integration and deployment capabilities, the library includes templates for managing pull requests, automating security vulnerability scanning, and maintaining project backlogs. These tools facilitate the automation of routine administrative tasks and help enforce organizational standards throughout the software development lifecycle. - [argoproj/argo-workflows](https://awesome-repositories.com/repository/argoproj-argo-workflows.md) (16,466 ⭐) — Argo Workflows is a container-native workflow engine that functions as a Kubernetes custom resource controller. It orchestrates complex sequences of containerized tasks by executing them as directed acyclic graphs, allowing for dependency management and parallel processing within a cluster. The system extends the native Kubernetes control plane to manage the full lifecycle of automated processes, from initial triggering to final resource cleanup. The platform distinguishes itself through its controller-pattern reconciliation, which continuously monitors workflow states to align them with desired configurations. It supports event-driven execution, enabling workflows to trigger based on external signals or time-based schedules. Users can define reusable operational patterns through a centralized template management system, ensuring consistency across distributed environments. The engine provides a comprehensive suite of tools for managing multi-step pipelines, including sidecar-based artifact management for data transfer between steps and external storage providers. It includes built-in administrative interfaces for visualizing execution progress, monitoring performance metrics, and enforcing security through standard authentication and authorization protocols. The system is designed to handle diverse operational requirements, ranging from automated batch processing and data engineering to infrastructure maintenance and software delivery pipelines. - [ngalongc/bug-bounty-reference](https://awesome-repositories.com/repository/ngalongc-bug-bounty-reference.md) (4,216 ⭐) — Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature - [greydgl/pentestgpt](https://awesome-repositories.com/repository/greydgl-pentestgpt.md) (11,697 ⭐) — PentestGPT is an autonomous security testing framework that leverages large language models to plan, execute, and coordinate end-to-end penetration testing engagements. By functioning as an autonomous agent, the system automates the entire testing lifecycle, from initial reconnaissance and vulnerability analysis to the generation of custom exploits and the execution of post-exploitation tasks. The platform distinguishes itself through a multi-agent orchestration system that coordinates specialized AI agents to collaborate on complex, multi-stage attack chains. It integrates multimodal context, synthesizing both visual and textual data to inform its decision-making process. To ensure consistency and continuity, the framework maintains persistent session state, allowing users to pause and resume assessments without losing critical context or progress. The system provides a comprehensive suite of capabilities for managing external security utilities, including the ability to parse raw command-line output into structured data for automated analysis. It operates within isolated, containerized environments to ensure that testing workflows remain reproducible and secure across diverse target architectures. - [hummingbot/hummingbot](https://awesome-repositories.com/repository/hummingbot-hummingbot.md) (18,907 ⭐) — Hummingbot is an open-source framework designed for building, backtesting, and deploying autonomous trading agents and algorithmic strategies across centralized and decentralized cryptocurrency exchanges. It provides a modular environment where users can orchestrate containerized bots to execute complex market-making, grid trading, and arbitrage operations. The platform distinguishes itself through a skill-based architecture that integrates large language models, enabling users to monitor market conditions and control trading operations via natural language commands. It features a unified connectivity layer that standardizes diverse exchange APIs, allowing for consistent order execution, liquidity provisioning, and real-time data processing across global financial markets. The system includes comprehensive tools for quantitative analysis, including a simulation engine for validating strategies against historical data and structured configuration management for auditability. It also incorporates safety mechanisms such as automated risk controls, secure wallet and identity management, and performance monitoring to ensure reliable operation in live environments. The project provides a complete development environment for building custom strategies, supported by interactive API documentation and automated installation tools for local deployment. - [aden-hive/hive](https://awesome-repositories.com/repository/aden-hive-hive.md) (10,578 ⭐) — Hive is an artificial intelligence workflow automation engine and development platform designed for building and deploying autonomous agents. It provides a framework for orchestrating complex, multi-step business processes by coordinating tasks across multiple specialized agents using directed graph structures. The platform distinguishes itself through a focus on production-grade reliability and state management. It maintains persistent execution context and conversation history on disk, enabling crash recovery and continuity for long-running automated sessions. Furthermore, it incorporates a multi-level evaluation pipeline that validates agent outputs through a combination of deterministic rules, semantic quality assessments, and human oversight. The system includes a universal model abstraction layer that allows developers to interface with diverse local or hosted language models. It also features operational policy enforcement, providing real-time metrics, budget controls, and audit trails to monitor workloads. To manage memory and performance, the engine optimizes context windows by truncating large data into compact references that agents can retrieve on demand. - [arkadiyt/bounty-targets-data](https://awesome-repositories.com/repository/arkadiyt-bounty-targets-data.md) (3,645 ⭐) — This project is a bug bounty target dataset and security asset list. It serves as a structured repository of reachable network assets, domains, and applications eligible for security testing across multiple vulnerability disclosure programs. The dataset is designed to support bug bounty reconnaissance, attack surface mapping, and security target analysis. It provides organized scopes and target lists to help identify valid assets for security testing and vulnerability research workflows. The repository utilizes automated scraping pipelines and platform API integration to synchronize data. It employs schema-based normalization to convert third-party formats into standardized static JSON files for storage and retrieval. - [s0md3v/photon](https://awesome-repositories.com/repository/s0md3v-photon.md) (12,953 ⭐) — Photon is a command-line web crawler designed for security reconnaissance and information gathering. It systematically traverses websites to discover URLs, map domain infrastructure, and identify associated subdomains by retrieving DNS records. The tool distinguishes itself through its ability to perform deep content analysis, including the extraction of sensitive data such as API keys and authentication tokens using user-defined regular expressions. It supports offline inspection by cloning crawled web content to the local filesystem, allowing for structural analysis without additional network activity. The crawler utilizes multi-threaded execution to maximize throughput during discovery and supports proxy-aware routing to manage traffic origin. Its architecture is built for integration into automated security workflows, allowing users to pipe discovered metadata and extracted patterns directly to standard output or export results into structured files for further processing. - [subfinder/subfinder](https://awesome-repositories.com/repository/subfinder-subfinder.md) (13,859 ⭐) — Subfinder is a passive subdomain enumeration tool and DNS asset discovery utility designed for mapping the external attack surface of a domain. It functions as a passive reconnaissance framework that identifies subdomains by querying curated third-party data sources and APIs without interacting directly with the target infrastructure. The tool utilizes a modular provider interface to integrate various passive sources and employs concurrent request orchestration to manage simultaneous network queries. It includes wildcard DNS filtering to identify and remove catch-all records, ensuring the resulting list contains unique and valid hosts. The utility is designed for security toolchain integration, supporting pipeline-based data streaming through standard input and output chaining. It provides capabilities for multi-format result export and includes a software development kit to embed the enumeration engine into other applications. - [djadmin/awesome-bug-bounty](https://awesome-repositories.com/repository/djadmin-awesome-bug-bounty.md) (5,708 ⭐) — A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups. - [nahamsec/resources-for-beginner-bug-bounty-hunters](https://awesome-repositories.com/repository/nahamsec-resources-for-beginner-bug-bounty-hunters.md) (12,053 ⭐) — This repository serves as a comprehensive educational guide and curriculum for individuals beginning their journey in web security and bug bounty hunting. It functions as a centralized hub that aggregates foundational knowledge, technical guides, and practical resources to assist newcomers in mastering the core principles of vulnerability research and ethical hacking. The project distinguishes itself through a community-driven curation model, where educational materials such as books, blogs, and labs are organized into structured learning paths. By leveraging a version-controlled, markdown-based framework, the repository allows for continuous updates and contributions from the security community, ensuring the information remains relevant for those navigating the professional cybersecurity career path. The collection covers a broad spectrum of skill development, ranging from the methodologies required for bug bounty program participation to the technical expertise needed for identifying security weaknesses in web applications. The content is accessible through a static, searchable web interface that simplifies the discovery of these disparate learning materials. - [projectdiscovery/subfinder](https://awesome-repositories.com/repository/projectdiscovery-subfinder.md) (13,105 ⭐) — Subfinder is a security reconnaissance framework designed for subdomain enumeration and attack surface management. It functions as a discovery engine that identifies and maps internet-exposed infrastructure, cloud-hosted assets, and network ranges to maintain a comprehensive inventory of an organization's digital footprint. The project distinguishes itself through a modular, template-driven scanning engine that executes security checks against discovered assets. It leverages cloud-native asset discovery to query provider APIs and infrastructure metadata, while supporting distributed agent orchestration to parallelize discovery workloads across remote nodes. For dynamic web application analysis, the tool incorporates headless browser rendering to execute client-side code and capture visual state. The platform provides a broad capability surface for security operations, including asynchronous interaction monitoring to detect blind vulnerabilities and server-side request forgery. It features a domain-specific language for granular filtering of scan results and supports pipeline-oriented data streaming to integrate findings into external security tools and reporting systems. The software is implemented in Go and provides a command-line interface for executing discovery tasks and managing security workflows. - [dubinc/dub](https://awesome-repositories.com/repository/dubinc-dub.md) (23,722 ⭐) — This project is a comprehensive link management and marketing attribution platform designed for creating, tracking, and analyzing shortened URLs. It functions as a centralized hub for marketing analytics, providing tools to monitor link performance, visualize conversion funnels, and manage affiliate programs through a unified dashboard. The platform distinguishes itself by integrating advanced attribution modeling and partner management directly into the link infrastructure. It supports complex marketing workflows, including automated commission calculations, fraud detection, and payout distribution for affiliates, alongside granular traffic redirection based on device, location, or A/B testing requirements. By utilizing custom domains and reverse proxy configurations, it ensures reliable data collection that bypasses common browser-based tracking restrictions. Beyond core link operations, the system offers extensive programmatic capabilities, including a robust API, SDKs, and event-driven webhooks for real-time integration with external services. It also incorporates enterprise-grade administrative features such as multi-tenant workspace isolation, role-based access control, and single sign-on integration to support collaborative team environments. The platform is built to be deployed within private infrastructure, allowing organizations to maintain full control over their data and system configuration. - [jasonxtn/argus](https://awesome-repositories.com/repository/jasonxtn-argus.md) (3,254 ⭐) — Argus is a modular network reconnaissance framework designed for gathering network intelligence, mapping infrastructure, and assessing security postures through automated discovery tasks. It operates as a containerized security toolset that allows for the consistent execution of specialized information-gathering modules across different operating systems. The system functions as an infrastructure audit tool and a web application security scanner, performing tasks such as DNS lookups, port scanning, and the inspection of HTTP headers to detect vulnerabilities. It also serves as a threat intelligence integrator by connecting to external security APIs to enrich reconnaissance data with global asset reputation and threat feeds. The framework covers network infrastructure reconnaissance, security configuration auditing for cryptographic setups and SSL/TLS fingerprints, and web intelligence gathering. It includes capabilities for interacting with network protocols such as SNMP, SSH, and LDAP to retrieve remote system and directory data. The software supports automated installation and deployment via Docker images to ensure environment isolation. - [edoverflow/bugbounty-cheatsheet](https://awesome-repositories.com/repository/edoverflow-bugbounty-cheatsheet.md) (6,498 ⭐) — This project is a bug bounty resource directory, vulnerability research cheatsheet, and web security payload library. It serves as a centralized collection of curated payloads and common attack vectors used to identify security vulnerabilities in web applications. The repository provides a directory of platforms, books, and tools to support vulnerability discovery skills. It includes a reference for tested payloads and techniques used to trigger bugs and identify vulnerabilities during security audits. The content covers web application pentesting, security vulnerability testing, and general bug bounty research. - [taksec/chatgpt-prompts-bug-bounty](https://awesome-repositories.com/repository/taksec-chatgpt-prompts-bug-bounty.md) (691 ⭐) - [techarohq/anubis](https://awesome-repositories.com/repository/techarohq-anubis.md) (17,067 ⭐) — Anubis is a command-line security reconnaissance framework designed for subdomain enumeration and attack surface mapping. It functions as a utility for security professionals to identify, catalog, and visualize the external digital footprint of an organization by discovering all subdomains associated with a target domain. The tool distinguishes itself through a modular resolver pipeline that integrates passive reconnaissance from third-party security APIs and public certificate transparency logs. It combines this data with active discovery methods, including recursive DNS brute-forcing and algorithmic pattern-based permutation generation, to uncover hidden infrastructure that is not publicly indexed. To maintain efficiency during large-scale assessments, the software utilizes asynchronous concurrent scanning to perform thousands of simultaneous DNS lookups. A built-in deduplication engine normalizes and filters these results to provide a clean, unique list of discovered assets for further vulnerability research. - [reconurge/flowsint](https://awesome-repositories.com/repository/reconurge-flowsint.md) (6,979 ⭐) — Flowsint is an open-source intelligence framework and reconnaissance orchestrator used for cybersecurity investigations. It functions as a containerized tool runner and data mapper, automating the collection of intelligence from open-source providers and APIs to profile targets and map threat intelligence. The platform distinguishes itself through a graph-based investigation interface, where processed raw intelligence is converted into nodes and edges to visualize relationships between entities. It allows for the creation of sequenced pipelines that chain data enrichment tools, enabling the output of one tool to serve as the input for the next. The system covers a broad range of OSINT capabilities, including cryptocurrency wallet analysis, domain and IP metadata enrichment, social presence enumeration, and email exposure auditing. It supports custom data type definitions and schema-driven validation to extend its analytical capabilities. The software provides options for local-first data storage to ensure privacy or centralized server deployment with frontend proxying for team access. - [kathanp19/jsfscan.sh](https://awesome-repositories.com/repository/kathanp19-jsfscan-sh.md) (1,093 ⭐) — Automation for javascript recon in bug bounty. - [danielmiessler/fabric](https://awesome-repositories.com/repository/danielmiessler-fabric.md) (42,408 ⭐) — Fabric is a command-line orchestrator designed to automate complex data processing and content generation tasks by chaining artificial intelligence models with modular prompt templates. It functions as a terminal-based tool that utilizes standard input and output streams, allowing users to pipe data directly into predefined reasoning strategies. By providing a model-agnostic abstraction layer, the system decouples execution logic from specific artificial intelligence vendors, normalizing requests and responses across different service providers. The platform distinguishes itself through its pattern-based orchestration, which enables the organization, storage, and reuse of custom prompt collections for consistent task execution. It includes a built-in server component that exposes these local prompt workflows as standard web endpoints, allowing external software and graphical interfaces to interact with custom logic as if it were a native model. Users can manage these interactions through a dedicated directory for private templates or via a graphical web dashboard, providing flexibility in how automated workflows are configured and monitored. Beyond its core orchestration capabilities, the tool offers a suite of utilities for development tasks, including document analysis, code context generation, and system interaction. It supports advanced reasoning techniques, such as chain-of-thought processing, and allows for specific model-to-pattern mapping to balance performance and operational costs. The system maintains state and configuration through local filesystem storage, ensuring portability across different operating environments. - [yogeshojha/rengine](https://awesome-repositories.com/repository/yogeshojha-rengine.md) (8,472 ⭐) — Rengine is an automated reconnaissance framework and vulnerability management platform designed for attack surface monitoring. It functions as a centralized hub for discovering subdomains and open ports, gathering open-source intelligence, and tracking security flaws across target networks. The system integrates large language models to analyze reconnaissance data and generate vulnerability descriptions and insights. It distinguishes itself through a plugin-based tool integration that wraps external security scanning binaries and a target mapping system that tracks changes to assets over time. The platform provides capabilities for bug bounty program coordination, recurring scan scheduling, and role-based access control for security teams. It also includes tools for natural language data filtering, webhook-based event notifications, and template-driven security report generation. - [ropensci/targets](https://awesome-repositories.com/repository/ropensci-targets.md) (1,083 ⭐) — Function-oriented Make-like declarative workflows for R - [nickpending/mcp-recon](https://awesome-repositories.com/repository/nickpending-mcp-recon.md) (27 ⭐) — Tellix is a conversational recon interface powered by httpx and LLMs. Just ask. - [chatwoot/chatwoot](https://awesome-repositories.com/repository/chatwoot-chatwoot.md) (31,959 ⭐) — Chatwoot is a self-hosted, omnichannel customer support platform designed to aggregate messages from diverse social and digital channels into a single, collaborative team inbox. It provides organizations with full data ownership and control over their support infrastructure, ensuring strict logical separation of customer data through multi-tenant architecture. By centralizing communication, the platform enables teams to manage, route, and resolve inquiries within a unified workspace that maintains complete interaction history for every contact. The platform distinguishes itself through an event-driven automation engine and a visual rule builder that allow teams to manage conversations and workflows without writing custom code. It incorporates intelligent features such as automated response drafting, conversation context recall, and a self-service knowledge base to improve agent efficiency. These capabilities are supported by granular role-based access controls and comprehensive performance analytics, which provide insights into agent productivity, inbox activity, and customer satisfaction trends. Beyond its core messaging and routing functions, the system offers a broad suite of operational tools including proactive engagement triggers, team workload balancing, and multilingual support. It supports flexible deployment strategies, including containerized and cloud-native orchestration, to accommodate various production environments. The platform is designed for extensibility, allowing for custom attribute management and integration with external systems via webhooks and API-based channels. - [six2dez/reconftw](https://awesome-repositories.com/repository/six2dez-reconftw.md) (7,226 ⭐) — reconftw is an attack surface management framework and reconnaissance workflow orchestrator designed to automate the discovery, mapping, and monitoring of external digital assets. It operates as a modular tool-chain pipeline that coordinates a sequence of security tools to perform intelligence gathering and vulnerability scanning. The project distinguishes itself through a cloud-native deployment model that parallelizes scanning workloads across a fleet of remote VPS instances to bypass local resource constraints. It utilizes container-based environment isolation to ensure consistent execution across different cloud providers and features a checkpoint system to resume interrupted workflows from the last point of failure. The toolkit covers a broad range of capabilities, including passive and active subdomain enumeration, open-source intelligence gathering, and network infrastructure analysis. It also incorporates automated vulnerability scanning for common web flaws and CVEs, differential asset tracking to identify new targets, and the generation of security reports using artificial intelligence. The environment can be deployed via container orchestration and integrated into CI/CD pipelines for recurring security checks. - [matrixtm/mhddos](https://awesome-repositories.com/repository/matrixtm-mhddos.md) (16,224 ⭐) — MHDDoS is a command-line utility designed for volumetric stress testing and infrastructure resilience assessment. It functions as a comprehensive framework for simulating high-volume network and application layer traffic to evaluate the capacity and stability of web services and network infrastructure. The tool distinguishes itself through its ability to generate complex, protocol-specific traffic patterns and raw packet structures. By employing dynamic header randomization and specialized payload injection, it simulates diverse request behaviors intended to test the effectiveness of security filters and protection services. It also includes integrated capabilities for infrastructure reconnaissance, allowing users to resolve network details and identify server endpoints prior to testing. The framework covers a broad spectrum of testing methodologies, ranging from application-layer request flooding to network-layer resource exhaustion. It supports both transport-layer packet crafting and high-concurrency web traffic simulation to identify bandwidth bottlenecks and processing limits. The project is distributed as a collection of scripts and is accessible via a command-line interface. - [sy3omda/burp-bounty](https://awesome-repositories.com/repository/sy3omda-burp-bounty.md) (0 ⭐) — Burp Bounty is extension of Burp Suite that improve Burp scanner. The Original Repo: https://github.com/wagiro/BurpBounty Author Twitter: egarme - [cfa-institute-rpc/the-automation-ahead](https://awesome-repositories.com/repository/cfa-institute-rpc-the-automation-ahead.md) (57 ⭐) — Code repository for The Automation Ahead series, showcasing practical examples for GenAI-driven automation in investments. Each installment dives into specific tools, techniques, and use cases to help professionals assess and apply GenAI effectively. - [usestrix/strix](https://awesome-repositories.com/repository/usestrix-strix.md) (20,138 ⭐) — Strix is an automated security research and vulnerability scanning platform that leverages language models to orchestrate complex security analysis tasks. It functions as a comprehensive framework for penetration testing and continuous security integration, allowing users to embed automated vulnerability research directly into development pipelines or execute it within isolated, containerized environments. The platform distinguishes itself through a multi-agent orchestration engine that coordinates specialized autonomous agents to perform parallel security assessments. By integrating LLM-agnostic routing, it supports a wide range of local and cloud-based model providers, enabling users to tailor analysis depth and reasoning capabilities to their specific security requirements. This orchestration is complemented by the ability to inject structured knowledge packages into agents, allowing for highly targeted vulnerability research and customized testing methodologies. The system provides a broad capability surface that combines static code analysis with dynamic runtime testing. It includes integrated headless browser automation for simulating user behavior, proxy-based traffic interception for inspecting and replaying network communication, and infrastructure mapping tools for reconnaissance. These features are unified within a sandboxed environment that supports custom script execution, terminal access, and real-time telemetry export for auditing and reporting. The project is designed for integration into existing development workflows, offering features like incremental codebase analysis, secret detection, and pipeline-native exit code reporting. It provides a centralized interface for managing scan intensity, authenticated testing, and the generation of structured security reports with proof-of-concept evidence. - [autoscrape-labs/pydoll](https://awesome-repositories.com/repository/autoscrape-labs-pydoll.md) (6,919 ⭐) — pydoll is a Chrome DevTools Protocol automation library and headless browser controller used for web data extraction and parallel browser automation. It controls Chromium-based browsers via direct WebSocket connections, allowing it to manage isolated browser contexts and tabs while bypassing the overhead and detection associated with WebDriver. The project features an anti-bot evasion framework that mimics natural human behavior, including mouse movements generated via Bezier curves and variable typing patterns. It provides specialized stealth capabilities to bypass behavioral analysis and automate interactions with CAPTCHA challenges. The library covers a broad range of capabilities, including network traffic interception for mocking server responses, comprehensive DOM manipulation and shadow DOM traversal, and structured data mapping for extracting content from dynamic pages. It also includes tools for browser fingerprint spoofing, identity synchronization, and the capture of page screenshots, PDFs, and screencasts. - [istlab/maven_bug_catalog](https://awesome-repositories.com/repository/istlab-maven-bug-catalog.md) (0 ⭐) — The Bug Catalog of the Maven Ecosystem (v2012) - [smicallef/spiderfoot](https://awesome-repositories.com/repository/smicallef-spiderfoot.md) (18,189 ⭐) — SpiderFoot is an open-source reconnaissance and intelligence automation framework designed to streamline the collection and correlation of data for security investigations. It functions as a comprehensive platform that automates the querying of hundreds of public data sources to map digital footprints, identify exposed assets, and uncover potential security threats across an organization's external perimeter. The platform distinguishes itself through a modular, plugin-based architecture that executes data gathering tasks in parallel, supported by a directed graph data model that tracks relationships between discovered entities. It utilizes dynamic workflow orchestration and event-driven correlation to guide users through multi-stage investigations, automatically triggering follow-up queries based on newly discovered indicators of compromise. Beyond core reconnaissance, the system provides extensive capabilities for attack surface management, credential leak monitoring, and threat actor tracking. It supports proactive security operations by facilitating automated threat hunting, generating detection signatures, and simulating attack scenarios to identify visibility gaps. The platform also manages the full intelligence lifecycle, from aggregating disparate data feeds and enriching findings with contextual analysis to producing actionable reports for risk evaluation. - [eigent-ai/eigent](https://awesome-repositories.com/repository/eigent-ai-eigent.md) (12,557 ⭐) — Eigent is a comprehensive platform for developing, configuring, and orchestrating autonomous AI agents. It functions as an agent development environment and workflow automation engine, enabling users to build modular agents equipped with custom toolsets, domain-specific skill packages, and external API connections to perform targeted operational tasks. The framework distinguishes itself through a robust multi-agent orchestration layer that coordinates teams of specialized agents to execute complex workflows. By utilizing hierarchical task decomposition, the system breaks high-level goals into granular subtasks that can be executed in parallel. It maintains operational reliability through event-driven monitoring and integrated human-in-the-loop protocols, which allow for manual oversight and intervention when agents encounter uncertainty or task failures. The platform provides a model-agnostic backend abstraction, allowing users to connect agents to a variety of local or cloud-based language model providers. This flexibility is supported by a modular tooling interface that connects agents to external software, remote servers, and custom functions. The system also includes mechanisms for persistent artifact storage and local data privacy management, ensuring that generated files and sensitive information are handled securely across different deployment environments. - [projectdiscovery/naabu](https://awesome-repositories.com/repository/projectdiscovery-naabu.md) (5,766 ⭐) — Naabu is a port scanner library and tool that probes hosts for open ports using SYN, CONNECT, and UDP methods to identify active services. It functions as a Go library for embedding port scanning into programs, and as a standalone tool that accepts targets as hostnames, IP addresses, CIDR ranges, or ASN numbers. The tool discovers live hosts before scanning, filters ports by range or top lists, and can integrate with Nmap for service version detection. The project distinguishes itself through its SYN-based port probing approach that sends TCP SYN packets and analyzes responses without completing the full handshake, enabling faster scans. It supports passive port enumeration through external services like Shodan InternetDB, and can exclude CDN or WAF IPs from full scans. Naabu also provides a REST API for programmatic scan triggering, configuration management, and result export, alongside the ability to embed port scanning directly into Go programs with callback-based result handling. The tool covers host discovery, port scanning, and service detection across multiple input formats and output options. It includes features for filtering scan targets, rescanning completed scans, and exposing scan metrics via HTTP. The project is available as a command-line tool and as a Go library, with support for Docker deployment. - [laravel-workflow/laravel-workflow](https://awesome-repositories.com/repository/laravel-workflow-laravel-workflow.md) (1,207 ⭐) — Core package for defining and running durable workflows and activities. Supports long-running persistent workflows, retries, queues, parallel execution, workflow monitoring, dedicated storage connections, and orchestration for microservices, data pipelines, sagas, agentic workflows, and other complex business processes. - [f/prompts.chat](https://awesome-repositories.com/repository/f-prompts-chat.md) (163,814 ⭐) — This platform serves as a centralized management system for organizing, refining, and versioning AI instructions and agent skills. It functions as a repository that enables users to store, categorize, and retrieve structured prompts, ensuring consistent performance across various artificial intelligence models. By integrating with the Model Context Protocol, the system allows external AI assistants and development environments to discover and access these instruction libraries directly. The platform distinguishes itself through its focus on prompt engineering and automated refinement, utilizing generative analysis to transform basic user instructions into structured, high-performance prompts. It supports multi-tenant white-labeling, allowing for isolated, custom-branded deployments that include secure identity management and granular access control. Additionally, the system incorporates an interactive educational environment designed to teach users effective techniques for constructing and optimizing AI interactions. Beyond core management, the platform provides semantic search indexing to facilitate efficient discovery of relevant instructions based on user intent. It also supports the development of complex agent skills and includes automated workflows that enforce behavioral standards for AI interactions. The system is designed for both individual use and enterprise-grade infrastructure deployment, offering tools for visual customization and interface localization to meet diverse organizational requirements. - [anmolksachan/thetimemachine](https://awesome-repositories.com/repository/anmolksachan-thetimemachine.md) (542 ⭐) — Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not - [owasp/amass](https://awesome-repositories.com/repository/owasp-amass.md) (14,722 ⭐) — Amass is a network attack surface mapper and reconnaissance framework designed to discover and map the external, internet-facing infrastructure of a target organization. It functions as an open source intelligence tool that identifies public network boundaries and locates hidden or forgotten subdomains to define an organization's total reachable footprint. The project utilizes passive-source data aggregation from external APIs and public databases alongside active DNS brute-forcing and recursive subdomain expansion. It employs a graph-based asset mapping system to visualize the relationships between discovered domains and IP addresses, supported by a modular plugin system for integrating third-party discovery services. The framework covers broader capabilities including network reconnaissance, public asset discovery, and the preparation of security audits by mapping all reachable entry points. These processes are managed through a concurrent worker pipeline to accelerate the scanning and resolution of large target sets. - [deanishe/alfred-workflow](https://awesome-repositories.com/repository/deanishe-alfred-workflow.md) (2,973 ⭐) — Full-featured library for writing Alfred 3 & 4 workflows - [pgssoft/automate](https://awesome-repositories.com/repository/pgssoft-automate.md) (291 ⭐) — Swift framework containing a set of helpful XCTest extensions for writing UI automation tests - [owasp-amass/amass](https://awesome-repositories.com/repository/owasp-amass-amass.md) (14,155 ⭐) — Amass is an attack surface management tool designed to identify, map, and inventory an organization's internet-facing digital assets. It functions as a security asset discovery engine that systematically expands an organization's known infrastructure footprint through recursive domain name resolution and the collection of intelligence from diverse public data sources. The platform distinguishes itself by utilizing a graph-based modeling approach to organize discovered resources. By maintaining a persistent graph database, it tracks the relationships between infrastructure components and normalizes data from multiple intelligence feeds into a unified schema. This allows for the visualization of complex network topologies and the long-term monitoring of infrastructure changes. The framework supports comprehensive security visibility by integrating modular data collection tasks and asynchronous processing to handle large-scale network scanning. It provides a centralized repository for asset records, enabling consistent tracking and analysis of an entity's technical landscape for threat intelligence and vulnerability identification. - [facebook/react](https://awesome-repositories.com/repository/facebook-react.md) (245,669 ⭐) — React is a JavaScript library for building user interfaces based on a component-driven architecture and unidirectional data flow. - [curl/curl](https://awesome-repositories.com/repository/curl-curl.md) (42,214 ⭐) — Curl is a command-line tool and portable library for transferring data across a wide range of network protocols. It functions as a unified engine that abstracts diverse communication standards, allowing users and developers to move files and information between servers using a consistent interface. The project provides both a versatile command-line client for terminal-based automation and a stable programmatic interface for integrating complex network operations into applications. The system is distinguished by its protocol-agnostic core and its ability to manage both synchronous and asynchronous network transfers. It features a non-blocking event loop that enables multiple simultaneous transfers within a single thread, alongside a connection pooling mechanism that reuses network sockets to minimize latency. Security is a primary focus, implemented through a pluggable architecture that supports various cryptographic backends, native certificate store integration, and comprehensive authentication mechanisms for protected resources. Beyond core data movement, the project includes extensive support for modern networking standards, including HTTP/3, WebSockets, and MQTT. It offers sophisticated state management through a built-in cookie engine and provides granular control over request headers, URL construction, and batch processing. These capabilities are supported by robust debugging tools that allow for the inspection of raw request and response data during development. The project is distributed with standard configuration scripts and package management support to facilitate integration into diverse build environments. - [polysquare/cppcheck-target-cmake](https://awesome-repositories.com/repository/polysquare-cppcheck-target-cmake.md) (18 ⭐) — Per-target CPPCheck for CMake - [xtls/realitlscanner](https://awesome-repositories.com/repository/xtls-realitlscanner.md) (2,993 ⭐) — RealiTLScanner is a TLS configuration scanner and network security auditor designed to identify security settings across IP addresses and domains. It functions as a target discovery tool that analyzes TLS configurations to find compatible endpoints and evaluate server security postures. The project distinguishes itself as a geolocation-enhanced network scanner, appending geographic location data and country codes to discovered security configurations using a local location database. This allows for the geographic mapping of servers by combining TLS scan results with GeoIP data. The tool supports internet asset discovery through multi-source target imports, including the extraction of domains from URLs and the resolution of CIDR ranges into discrete addresses. It manages these tasks using a concurrent worker pool and asynchronous probe dispatch to analyze targets at scale. Scan results and security metadata are processed through a data pipeline and exported into structured formats, such as CSV files, for further analysis. - [projectdiscovery/nuclei](https://awesome-repositories.com/repository/projectdiscovery-nuclei.md) (29,189 ⭐) — Nuclei is a modular security scanning framework designed for automated vulnerability detection and infrastructure reconnaissance. It functions as a template-driven engine that executes security checks across diverse network protocols, allowing users to define custom detection logic to identify vulnerabilities, misconfigurations, and exposed assets. The platform distinguishes itself through its highly extensible architecture, which supports distributed scanning, headless browser automation for dynamic web content, and out-of-band interaction monitoring to detect blind vulnerabilities. It integrates advanced reconnaissance capabilities, including cloud infrastructure assessment, subdomain discovery, and technology fingerprinting, into a unified workflow that can be orchestrated via a command-line interface or programmatic API. Beyond core scanning, the project provides a comprehensive suite of tools for external attack surface management, including asset inventorying, visual evidence capture, and automated ticketing integration. It supports collaborative security operations through team workspaces, centralized template management, and real-time alerting, ensuring that vulnerability findings can be tracked, verified, and remediated within a single environment. The platform is distributed as a command-line utility and supports containerized execution, enabling integration into existing CI/CD pipelines and automated security workflows. - [sofie-automation/sofie-tv-automation](https://awesome-repositories.com/repository/sofie-automation-sofie-tv-automation.md) (0 ⭐) — Sofie is a web-based TV automation system for studios and live shows, used in daily live TV news productions by the Norwegian public service broadcaster NRK since September 2018. - [agno-agi/agno](https://awesome-repositories.com/repository/agno-agi-agno.md) (40,717 ⭐) — Agno is an agent operating system designed to manage the lifecycle, tool execution, and persistent state of autonomous agents across distributed infrastructure. It provides a unified runtime environment that wraps diverse agent frameworks into a consistent, interoperable protocol, allowing developers to build and deploy complex multi-agent systems that coordinate tasks and delegate sub-processes. The platform distinguishes itself through a robust governance and orchestration layer that includes human-in-the-loop approval gates, role-based access control, and a centralized API gateway. It features a shared cultural knowledge layer that enables agents to reflect on interactions and store universal principles across sessions, alongside persistent memory architectures that manage chat history and context retrieval. The system supports a wide range of operational capabilities, including real-time response streaming, asynchronous background task management, and automated performance evaluation. It integrates with external systems through standardized interfaces and provides comprehensive observability tools to trace autonomous decision paths and monitor agent accuracy in production environments. Developers can configure the system using typed classes or YAML files, and the platform exposes agents as secure, scalable web services with built-in middleware for authentication and request validation.