A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
Go to file
Edoardo Ottavianelli 54f48a1791
Update README.md
2024-06-20 09:23:23 +02:00
.github Create FUNDING.yml 2023-11-29 10:45:09 +01:00
scripts removed section_escaped 2023-10-14 20:20:00 +05:30
CNAME Create CNAME 2024-02-24 09:18:21 +01:00
LICENSE Create LICENSE 2023-04-12 12:03:02 +02:00
README.md Update README.md 2024-06-20 09:23:23 +02:00

Awesome Hacker Search Engines

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

GeneralServersVulnerabilitiesExploitsAttack surfaceCodeMail addressesDomainsURLsDNSCertificatesWiFi networksDevice InfoCredentialsLeaksHidden ServicesSocial NetworksPhone numbersImagesThreat IntelligenceWeb HistorySurveillance camerasCryptoPeople

General Search Engines

Servers

  • Shodan - Search Engine for the Internet of Everything
  • Censys Search - Search Engine for every server on the Internet to reduce exposure and improve security
  • Onyphe.io - Cyber Defense Search Engine for open-source and cyber threat intelligence data
  • ZoomEye - Global cyberspace mapping
  • GreyNoise - The source for understanding internet noise
  • Natlas - Scaling Network Scanning
  • Netlas.io - Discover, Research and Monitor any Assets Available Online
  • FOFA - Cyberspace mapping
  • Quake - Cyberspace surveying and mapping system
  • Hunter - Internet Search Engines For Security Researchers
  • ODIN - One of the most powerful search engines for Scanned Internet Assets

Vulnerabilities

Exploits

  • Exploit-DB - Exploit Database
  • Sploitus - Convenient central place for identifying the newest exploits
  • Rapid7 - DB - Vulnerability & Exploit Database
  • Vulmon - Vulnerability and exploit search engine
  • packetstormsecurity.com - Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
  • 0day.today - Ultimate database of exploits and vulnerabilities
  • LOLBAS - Living Off The Land Binaries, Scripts and Libraries
  • GTFOBins - Curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
  • Payloads All The Things - A list of useful payloads and bypasses for Web Application Security
  • XSS Payloads - The wonderland of JavaScript unexpected usages, and more
  • exploitalert.com - Database of Exploits
  • Reverse Shell generator - Online Reverse Shell generator with Local Storage functionality, URI & Base64 Encoding, MSFVenom Generator, and Raw Mode
  • HackerOne hacktivity - See the latest hacker activity on HackerOne
  • Bugcrowd Crowdstream - Showcase of accepted and disclosed submissions on Bugcrowd programs
  • GTFOArgs - Curated list of Unix binaries that can be manipulated for argument injection
  • shell-storm.org/shellcode - Shellcodes database for study cases
  • Hacking the Cloud - Encyclopedia of the attacks/tactics/techniques that offensive security professionals can use on their next cloud exploitation adventure
  • LOLDrivers - Open-source project that brings together vulnerable, malicious, and known malicious Windows drivers
  • PwnWiki - Collection of TTPs (tools, tactics, and procedures) for what to do after access has been gained
  • CVExploits Search - Your comprehensive database for CVE exploits from across the internet
  • VARIoT - VARIoT IoT exploits database
  • LOOBins - Detailed information on various built-in macOS binaries and how they can be used by threat actors for malicious purposes
  • Coalition Exploit Scoring System - Model that dynamically scores new and existing vulnerabilities to reflect their exploit likelihood
  • WADComs - Interactive cheat sheet containing a curated list of offensive security tools and their respective commands to be used against Windows/AD environments
  • LOLAPPS - Compendium of applications that can be used to carry out day-to-day exploitation
  • Living off the Hardware - Resource collection that provides guidance on identifying and utilizing malicious hardware and malicious devices
  • Living Off the Pipeline - How development tools commonly used in CI/CD pipelines can be used to achieve arbitrary code execution
  • hackyx.io - The aim of this project is to easily find any resource related to IT security like CTF writeups, articles or Bug Bounty reports

Attack Surface

  • FullHunt.io - Attack surface database of the entire Internet
  • BinaryEdge - We scan the web and gather data for you
  • Censys ASM - Attack Surface Management Solutions
  • RedHunt Labs - Discover your Attack Surface, Continuously
  • SecurityTrails - The Total Internet Inventory
  • overcast-security.com - We make tracking your external attack surface easy
  • IPInfo.io - The trusted source for IP address data
  • IPData.co - IP Geolocation and Threat Intelligence API
  • NetworksDB - Information about the public IPv4 and IPv6 addresses, networks and domains owned by companies and organisations across the world
  • ASNlookup - Quickly lookup updated information about specific Autonomous System Number (ASN), Organization, CIDR, or registered IP addresses (IPv4 and IPv6) among other relevant data
  • BGPtools - Browse the Internet ecosystem
  • BGPview - Debug and investigate information about IP addresses, ASN, IXs, BGP, ISPs, Prefixes and Domain names
  • BigDataCloud - The API provides comprehensive location and network data
  • RADb - The world's largest public routing registry
  • Deepinfo - Empower your security with the most comprehensive Internet data
  • CloudFlare Radar - Global Internet traffic, attack, and technology trends and insights

Code

  • GitHub Code Search - Search globally across all of GitHub, or scope your search to a particular repository or organization
  • GitLab Code Search - Advanced search for faster, more efficient search across the entire GitLab instance
  • Sourceforge - Complete Open-Source and Business Software Platform
  • grep.app - Search across a half million git repos
  • publicwww.com - Find any alphanumeric snippet, signature or keyword in the web pages HTML, JS and CSS code
  • SearchCode - Search 75 billion lines of code from 40 million projects
  • NerdyData - Find companies based on their website's tech stack or code
  • RepoSearch - Source code search engine that helps you find implementation details, example usages or just analyze code
  • SourceGraph - Understand and search across your entire codebase
  • HotExamples - Search code examples from over 1 million projects
  • WP Directory - Lightning fast regex searching of code in the WordPress Plugin and Theme Directories
  • GitHub Gists - Instantly share code, notes, and snippets
  • CodeBerg - Collaboration platform and Git hosting for free and open source software, content and projects
  • Fedora Pagure - Open Source software code hosting system
  • LaunchPad - Software collaboration platform that provides: Bug tracking, Code hosting, Code reviews, Ubuntu package building and hosting, Translations...
  • repo.or.cz - Public Git hosting site
  • gitorious.org - Read-only mirror of the former gitorious.org code hosting website
  • Sourcehut - Collection of tools useful for software development
  • android.googlesource.com - Git repositories on android
  • deps.dev - Service developed and hosted by Google to help developers better understand the structure, construction, and security of open source software packages
  • WebFinery - Search the source code of the web
  • Google Code Archive - Data found on the Google Code Project Hosting Service, which was turned down in early 2016
  • Snipplr - Code snippet search engine that allows users to search and share code snippets across various programming languages and frameworks
  • Postman Public Collections - Explore the best APIs, collections, workspaces in the world on the Postman Public API Network
  • ScriptMafia - Download full nulled scripts
  • SearchFTPs - The most advanced FTP Search Engine service maintained by members
  • Ecosyste.ms - An open API service providing package, version and dependency metadata of many open source software ecosystems and registries
  • SwaggerHub - Search public APIs and Domains in SwaggerHub

Mail Addresses

  • Hunter.io - Find professional email addresses in seconds
  • PhoneBook - Lists all domains, email addresses, or URLs for the given input domain
  • IntelligenceX - Search engine and data archive
  • Reacher.email - Open-Source Email Verification
  • RocketReach - Your first-degree connection to any professional
  • email-format.com - Find the email address formats in use at thousands of companies
  • EmailHippo - Email address verification technology
  • ThatsThem - Reverse email lookup
  • verify-email.org - Checks whether the mailbox exists or not
  • Melissa - Emailcheck - Check email addresses and verify they are live
  • VoilaNorbert - I can find anyone's email address
  • SynapsInt - The unified OSINT research tool
  • skymem.info - Find email addresses of companies and people
  • findemails.com - Find Anyone's Email Address in Seconds
  • Experte email finder - Find the right email address, even if you only know the name and the company
  • EmailSherlock - Search for the Person behind the Email address and find our reputation score
  • Anymail Finder - Find verified emails
  • Tomba.io - With 430+ million email addresses indexed, effective search filters, and deliverability checks, Tomba's email finder is its most powerful tool
  • Snov Email Finder Find any email. Anywhere
  • EmailSearch.io - Find any emails and phones from a domain, Linkedin, name, and company
  • Email Permutator+ - Find potential email addresses permutating different combinations
  • Emailrep.io - Simple Email Reputation
  • Mailboxvalidator - Secure and reliable email validation service to check for invalid email addresses
  • ContactOut - Most accurate email finder for personal and work email outreach
  • validemail.io - Validate email addresses for deliverability with our Email Validation API

Domains

URLs

DNS

  • DNSDumpster - DNS recon & research, find & lookup dns records
  • Chaos - Enhance research and analyse changes around DNS for better insights
  • RapidDNS - DNS query tool which make querying subdomains or sites of a same ip easy
  • DNSdb - Passive DNS historical database
  • Omnisint - Reverse DNS lookup
  • HackerTarget - Collect information about IP Addresses, Networks, Web Pages and DNS records
  • passivedns.mnemonic.no - Web interface for querying passive DNS data collected in our malware lab
  • ptrarchive.com - Over 230 billion reverse DNS entries from 2008 to the present
  • dnshistory.org - Domain Name System Historical Record Archive
  • DNSTwister - The anti-phishing domain name search engine and DNS monitoring service
  • DNSviz - Tool for visualizing the status of a DNS zone
  • C99.nl - Over 57 quality API's and growing
  • wannabe1337.xyz - Online Tools
  • DNSlytics - Find out everything about a domain name, IP address or provider
  • dnsrepo.noc.org - DNS Database Repository Search
  • DNSSpy - Monitor, validate and verify your DNS configurations
  • ZETAlytics - We offer unrivalled geographic diversity and exclusive global network visibility in searchable datasets for use by cyber security analysts
  • AskDNS - Lookup Connected Domain Names and IP Addresses
  • 360 PassiveDNS.CN - Biggest public available db in China designed for security and research purpose
  • MXtoolbox - All of your MX record, DNS, blacklist and SMTP diagnostics in one integrated tool
  • NSLookup.io - Find all DNS records for a domain name using this online tool
  • Robtex DNS Lookup - Get detailed information on the nameservers associated with a domain name
  • DNSMap - Worldwide DNS Propagation Checker
  • Validin - Massive collection of DNS records with free DNS history search
  • dnslookup.pro - Advanced DNS Record Analysis & Troubleshooting

Certificates

  • Crt.sh - Certificate Search
  • CTSearch - Certificate Transparency Search Tool
  • tls.bufferover.run - Quickly find certificates in IPv4 space
  • CertSpotter - Monitors your domains for expiring, unauthorized, and invalid SSL certificates
  • SynapsInt - The unified OSINT research tool
  • Censys Search - Certificates - Certificates Search
  • ciphersuite.info - TLS Ciphersuite Search. Search for a particular cipher suite by using IANA, OpenSSL or GnuTLS name format
  • certificatedetails - Online certificate viewer. Inspect and download certificates from your browser
  • FacebookCT - Search for certificates issued for a given domain and subscribe to notifications from Facebook regarding new certificates
  • certs.io - Search TLS certificates across the internet.
  • ODIN Certificates Search - ODIN Certificates Search

WiFi Networks

  • Wigle.net - Maps and database of 802.11 wireless networks with statistics
  • wifimap.io - Connect to all Free WiFi Hotspots using WiFi Map App all over the World!
  • wificafespots.com - Free WiFi Cafe Spots
  • wifispc.com - Free map of Wi-Fi passwords anywhere you go!
  • openwifimap.net - HTML5 map with OpenWiFiMap data
  • mylnikov.org - Public API implementation of Wi-Fi Geo-Location database

Device Information

Credentials

  • Have I Been Pwned - Check if your email or phone is in a data breach
  • Dehashed - Free deep-web scans and protection against credential leaks
  • LeakCheck.io - Make sure your credentials haven't been compromised
  • crackstation.net -Massive pre-computed lookup tables to crack password hashes
  • HashKiller - Pre-cracked Hashes, easily searchable
  • LeakedPassword - Search across multiple data breaches to see if your pass has been compromised
  • BugMeNot - Find and share logins
  • Hashes.com - Decrypt and crack your MD5, SHA1, SHA256, MySQL, MD5 Email, SHA256 Email, and NTLM hashes for free online
  • Hashmob - The Largest Password Recovery Community
  • WhiteIntel - Check if a company or its customers was victim of an information stealer malware
  • ntlm.pw - Instantly look up NTLM hashes and resolve them to plaintext passwords using our database with 8B+ entries
  • Hudson Rock - Use Hudson Rocks free cybercrime intelligence tools to learn how compromised credentials are impacting your business

Leaks

Hidden Services

Social Networks

These can be useful for osint and social engineering.

Phone Numbers

  • NumLookup - Free reverse phone lookup
  • SpyDialer - Free Reverse Lookup Search
  • WhitePages - Find people, contact info & background checks
  • National Cellular Directory - Begin your comprehensive people search now
  • Phone Validator - Is it a cell phone or is it a landline or is it a fake?
  • Free Carrier Lookup - Enter a phone number and we'll return the carrier name
  • RocketReach - Your first-degree connection to any professional
  • sync.me - Find out who called
  • EmobileTracker - Track Mobile Owner Name, Location and Mobile Service Provider
  • Reverse Phone Lookup - Find Out The Owner Of A Phone Number
  • ThatsThem - Reverse phone lookup
  • thisnumber.com - International Phone Directories
  • usphonebook.com - Free Reverse Phone Number Lookup
  • truepeoplesearch.com - Get current address, cell phone number, email address, relatives, friends and a lot more
  • Tellows - Who is calling? The phone number reverse search
  • SynapsInt - The unified OSINT research tool
  • C99.nl - Over 57 quality API's and growing
  • ValidNumber.com - Free reverse phone lookup service to let you identify a caller associated with any 10-digit phone number from the US and Canada
  • CellIdFinder - Nonprofit project which helps you to find GSM BTS by MCC, MNC, LAC and CellID
  • OldPhoneBook - Instantly search a large selection from the past 20 years of USA phone listings
  • Spokeo - Search by name, phone, address, or email to confidentially lookup information about people you know
  • Intelius Phone Lookup - Look up a phone number to find owner information, carrier details, and more
  • ZabaSearch Phone Lookup - Reverse Phone Lookup Tool Can Uncover Personal Information, Social Media Data, Online Activity, Photos, and More
  • AnyWho Phone Lookup - Find out information associated with a phone number
  • Radaris Phone Lookup - Look up any phone number to see its owner and identify who's calling or texting you
  • Reverse Phone Lookup - Reverse phone number lookup with millions of listings including name or address

Images

  • Google Image Search - The most comprehensive image search on the web
  • Baidu Image - Baidu Image Search
  • Yahoo Image - Yahoo Image Search
  • Yandex Image - Yandex Image Search
  • Facecheck.id - Search for people by photo and verify you are talking to the person they claim to be
  • Bing Visual Search - See it, search it
  • Reverse Image Search - Super-fast image finder that helps you find similar images online
  • Reverse Image - Find Where Images Appear Online
  • Pixsy - Find and fight image theft
  • Pimeyes - Face Search Engine, Reverse Image Search
  • Pictriev - Find look-alike celebrities on the web using the face recognition
  • Karmadecay - Reverse image search of Reddit.com
  • Infringement Report - The web's best image copyright infringement search tool
  • Tineye - Image search and recognition company
  • Flickr - Home to tens of billions of photos and 2 million groups
  • Sogou - Chinese technology company that offers a search engine
  • Jimpl - Online photo metadata and EXIF data viewer
  • Same Energy - Find beautiful images
  • Pixabay - Stunning royalty-free images & royalty-free stock
  • FotoForensics - Tools and training for digital picture analysis, including error level analysis, metadata, and tutorials
  • Exif data - Online application that lets you take a deeper look at your favorite images
  • Image Identify - Image recognition site, just drag your image & identify

Threat Intelligence

  • MITRE ATT&CK - Globally-accessible knowledge base of adversary tactics and techniques
  • PulseDive - Threat intelligence made easy
  • ThreatCrowd - A Search Engine for Threats
  • ThreatMiner - Data Mining for Threat Intelligence
  • VirusTotal - Analyze suspicious files, domains, IPs and URLs to detect malware and other breaches
  • vx-underground.org - The largest collection of malware source code, samples, and papers on the internet
  • bazaar.abuse.ch - Malware sample database
  • feodotracker.abuse.ch - List of botnet Command&Control servers
  • sslbl.abuse.ch - All malicious SSL certificates
  • urlhaus.abuse.ch - Propose new malware urls
  • threatfox.abuse.ch - Indicator Of Compromise (IOC) database
  • yaraify.abuse.ch - Scan suspicious files such as malware samples or process dumps against a large repository of YARA rules
  • Rescure - Curated cyber threat intelligence for everyone
  • otx.alienvault - The World's First Truly Open Threat Intelligence Community
  • urlquery.net - Service for detecting and analyzing web-based malware
  • socradar.io - Extension to your SOC team
  • VirusShare - System currently contains 48 million malware samples
  • PassiveTotal - Security intelligence that scales security operations and response
  • malapi.io - Windows APIs used for malicious purposes
  • filesec.io - Latest file extensions being used by attackers
  • leakix.net - Search engine indexing public information and an open reporting platform linked to the results
  • tria.ge - Fully automated solution for high-volume malware analysis using advanced sandboxing technology
  • Polyswarm - Launchpad for new technologies and innovative threat detection methods
  • Cisco Talos - The threat intelligence organization at the center of the Cisco Security portfolio
  • scamsearch.io - Find your scammer online & report them
  • CyberCampaigns - Threat Actor information and Write-Ups
  • ORKL - The Community Driven Cyber Threat Intelligence Library
  • Maltiverse - Data from more than 100 different Threat Intelligence sources
  • Inquest Labs - Threat intelligence from hundreds of public, private, and internal sources to develop new FDR signatures and rules
  • PhishTank - Collaborative clearing house for data and information about phishing on the Internet
  • IntelOwl - Open Source Intelligence, or OSINT solution to get threat intelligence data about a specific file, an IP or a domain from a single API at scale
  • Lupovis - Analyze and collect data on Internet-wide scans and attacks in real-time. We use this data to identify and classify malicious actors
  • AbuseIPDB - Check the report history of any IP address to see if anyone else has reported malicious activities
  • Sucuri SiteCheck - Check websites for known malware, viruses, blacklisting status, website errors, out-of-date software, and malicious code
  • Spamhaus - Protect and investigate using IP and domain reputation data
  • ThreatBook - One step ahead of your adversary with high-fidelity, efficient and actionable cyber threat intelligence
  • ShadowServer - Nonprofit security organization working altruistically behind the scenes to make the Internet more secure for everyone
  • Team Cymru - Global leader in cyber threat intelligence and attack surface management
  • BeVigil - Search engine for mobile application security testing
  • CIRCL - The Computer Incident Response Center Luxembourg is a government-driven initiative designed to gather, review, report and respond to computer security threats and incidents
  • MetaDefender Cloud - Advanced threat detection and prevention platform
  • Cybersixgill - Threat intelligence platform that provides access to a wide range of cybersecurity information, including dark web monitoring and threat actor analysis
  • Hybrid Analysis - Free malware analysis service for the community that detects and analyzes unknown threats using a unique Hybrid Analysis technology
  • IBM X-Force Exchange - Threat intelligence sharing platform enabling research on security threats, aggregation of intelligence, and collaboration with peers
  • The DFIR Report - Real Intrusions by Real Attackers, The Truth Behind the Intrusion
  • Detection.FYI - Search Sigma rules
  • WhoisXMLAPI - Domain & IP Data Intelligence for Greater Enterprise Security
  • APIVoid - Threat analysis centered on IP and Domain reputation, along with additional services
  • AnyRun - Browse thousands of malware samples in our database
  • Filescan.io - Search reports for file name, URL, IP, Domain or Hash
  • MalShare - Community driven public malware repository that works to provide free access to malware samples
  • Kaspersky TIP - Scan files, domains, IP addresses, and URLs for threats, malware, viruses
  • Malwares.com - Search malwares online
  • ApkLab - Mobile threat intelligence platform designed to provide the most relevant information for Android security researchers
  • Scumware - Find latest reports about malware and other threats
  • Living off the False Positive - Autogenerated collection of false positives sourced from some of the most popular rule sets
  • HijackLibs - Project for tracking publicly disclosed DLL Hijacking opportunities
  • bootloaders.io - Curated list of known malicious bootloaders for various operating systems
  • WTFBins - Catalogue benign applications that exhibit suspicious behavior. These binaries can emit noise and false positives in threat hunting and automated detections
  • LOFLCAB - Document every cmdlet, binary, script, and WMI class that can be used for Living Off the Foreign Land techniques
  • OpSecFailure - Site that lists how individuals messed up their opsec, no personal info is shared on this site
  • TrailDiscover - An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and security implications

Web History

  • Web Archive - Explore more than 702 billion web pages saved over time
  • Archive.ph - Create a copy of a webpage that will always be up even if the original link is down
  • CachedPages - Get the cached page of any URL
  • stored.website - View cached web pages/website
  • CommonCrawl - Open repository of web crawl data
  • UK Web Archive - Collects millions of websites each year, preserving them for future generations
  • Arquivo - Non-profit service that maintains information published on the web of interest to the Portuguese community
  • Archive-It - An archive of digital government and non-government organization (NGO) documents and reports
  • HAW - Croatian Web Archive

Surveillance cameras

Crypto

People

  • TruePeopleSearch - Free people search tool. Search billions of public records
  • TruthFinder - A people search is a quick and simple way to find information on someone by name
  • BeenVerified - BeenVerified's mission is to give people easy and affordable access to public record information
  • ZabaSearch - Free* People Search and Public Information Search Engine
  • PeekYou - Fast People Search Made Easy
  • PeopleFinders - People Search
  • Pipl - The #1 source for identity & trust
  • That's Them - Find Someone's Contact Details By Name
  • snitch.name - Social White Pages application with helps you Search for People's Profiles on Social Sites
  • Webmii - People search engine
  • FastPeopleSearch - Find a person by name, phone number, or street address
  • Sorted By Name - A curated collection of links to genealogy details mentioned on other websites, or acquired by the webmaster
  • Radaris - Find People Fast and Free
  • Addresses.com - Free People Search and Public Information Search Engine
  • Advanced Background Checks - Free People Search
  • Yasni - Search phone, email, address for any name. News, pictures & links for any person. Find anyone on the internet with the world's largest free people search
  • USA Data Search - The USA official website provides access to public data that can be searched and viewed by anyone
  • AnyWho - Finding People, Places, and Businesses
  • Lullar - Profile Search by Email, First Last Name or Username
  • Ancestry - The largest for-profit genealogy company in the world, it operates a network of genealogical, historical records, and related genetic genealogy websites
  • genealogy.com - Source for family history buffs to find genealogical research originally posted in GenForum and our most popular genealogy articles
  • US Search - Access to details about the people in your life. Access public records, contact information, background checks & more
  • Find My Past - Discover your global ancestors by searching millions of records across the world
  • FamilySearch - Search for your ancestors in birth certificates, marriage registrations, census records, and other documents
  • iTools - Wink People Search - Free people search. Find people on social networks and across the Web
  • Intelius - Leading provider of public data about people and their connections to others

Unclassified

  • DorkSearch - Speed up your Dorking
  • usersearch.org - Find someone by username or email on Social Networks, Dating Sites, Forums, Crypto Forums, Chat Sites and Blogs
  • Pastebin - Website where you can store text online for a set period of time
  • Wappalyzer - Instant access to website technology stacks, company and contact details, social media profiles, email verification and more
  • Awakari - Real-Time Search from unlimited sources like RSS, Fediverse, Telegram, etc. Filter events by keywords, numeric conditions, condition groups

Not working / Paused


If you want to propose changes, just open an issue or a pull request.

edoardoottavianelli.it to contact me.