5 Popular Open Source Tools for Reconnaissance
Overview
In penetration testing, reconnaissance (information gathering) is the first step to analyse the target and explore its attack surface. It is a crucial step to determine the ways that the target could be exploited.
In this article, we will explore the 5 essential and popular open-source tools for reconnaissance for penetration testing.
We will be covering the following tools:
Wappalyzer - Website Technology Identifier
DNSrecon - DNS-related information gathering
Sublit3r - Subdomain finder
theHarvester - Email Finder (for social engineering)
Ffuf - URL Fuzzer/Finder
Wappalyzer
Wappalyzer is software that identifies technologies in a web application such as CMS, web frameworks, eCommerce platforms, JavaScript libraries, analytics tools and more....