Web application reconnaissance tools

Tools

CMSmap (reconnaissance tool for popular CMS frameworks)

application testing, information gathering, vulnerability scanning, web application analysis

CMSmap helps saving time in the process of detecting what CMS is used for a given web application. It performs reconnaissance and can do additional vulnerability scanning.

DIRB (web content scanner)

DIRB is a security tool to discover directories and files on a web server. It can be used during penetration testing or security assessments to find sensitive information.

Th3inspector (extensive information gathering tool)

discovery of sensitive information, information gathering

This tool can be called a true 'inspector tool' as it helps to discover many types of data.

  • Website information
  • Domain and subdomain information
  • Mail server information and email
  • Phone details
  • IP addresses
  • Detection of used CMS

Missing a favorite tool in this list? Share a tool suggestion and we will review it.