OWASP Amass is an attack surface mapping and asset discovery framework. It performs network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques.
It’s designed to help organizations identify and understand their external footprint by combining open source intelligence gathering, network mapping, and active reconnaissance techniques. The project goes beyond simple subdomain enumeration by modeling both physical and digital assets and the relationships between them, making it suitable for broader attack surface intelligence and long-term asset tracking.
This is free and open source software.
Key Features
- Performs external asset discovery using OSINT and active reconnaissance techniques.
- Maps attack surfaces and network relationships across an organization’s footprint.
- Uses the Open Asset Model to represent assets, properties, and relationships.
- Supports centralized asset storage and long-term tracking with an Asset Database.
- Offers configurable data sources and transformations.
- Can be installed from source, via Homebrew, with the official Docker image, or through Docker Compose.
- Can be built with libpostal support for street address parsing.
Website: github.com/owasp-amass/amass
Support:
Developer: OWASP Amass Project
License: Apache License 2.0
OWASP Amass is written in Go. Learn Go with our recommended free books and free tutorials.
 Explore our comprehensive directory of recommended free and open source software. Our carefully curated collection spans every major software category.This directory is part of our ongoing series of informative articles for Linux enthusiasts. It features hundreds of detailed reviews, along with open source alternatives to proprietary solutions from major corporations such as Google, Microsoft, Apple, Adobe, IBM, Cisco, Oracle, and Autodesk. You’ll also find interesting projects to try, hardware coverage, free programming books and tutorials, and much more. Discovered a useful open source Linux program that we haven’t covered yet? Let us know by completing this form. |