pentest-osint-recon

Open Source Intelligence gathering and attack surface management for external reconnaissance.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "pentest-osint-recon" with this command: npx skills add jd-opensource/joysafeter/jd-opensource-joysafeter-pentest-osint-recon

Pentest OSINT Recon

Purpose

Gather publicly available information about a target organization to map its external attack surface, including subdomains, emails, and exposed assets.

Core Workflow

  1. Domain Enumeration: Discover subdomains and related assets using amass and subfinder.
  2. Tech Profiling: Identify technologies used on discovered assets using httpx and whatweb.
  3. Information Gathering: Search for emails, leaks, and social media presence using theharvester and search engines.
  4. Asset Correlation: Correlate IP addresses, domains, and technologies to find weak spots.
  5. Vulnerability Intel: Check discovered software versions against CVE databases.

References

  • references/tools.md
  • references/workflows.md

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

General

pentest-exploit-validation

No summary provided by upstream source.

Repository SourceNeeds Review
-35
jd-opensource
General

pentest-ctf-binary

No summary provided by upstream source.

Repository SourceNeeds Review
-31
jd-opensource
General

pentest-secrets-exposure

No summary provided by upstream source.

Repository SourceNeeds Review
-28
jd-opensource