Tool and Usage
|Latest release||0.5 |
Why this tool?
Intrigue Core provides a framework to measure the attack surface of an environment. This includes discovering infrastructure and applications, performing security research, and doing vulnerability discovery.
Intrigue also allows enriching available data and perform OSINT research (open source intelligence). The related scans include DNS subdomain brute-forcing, email harvesting, IP geolocation, port scanning, and using public search engines like Censys, Shodan, and Bing.
How it works
Intrigue has a set of scripts or tasks that it uses to find information. Some of the collected data is used for vulnerability discovery, while other pieces are part of the OSINT research.
Usage and audience
Intrigue Core is commonly used for asset discovery, attack surface measurement, intelligence gathering, OSINT research, penetration testing, or security assessment. Target users for this tool are pentesters and security professionals.
- Application programming interface (API) available
- Command line interface
- Docker support
- Support for Vagrant
- Web interface
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
- + More than 500 GitHub stars
- + The source code of this software is available
Supported operating systems
Intrigue Core is known to work on Linux and macOS.
Intrigue Core alternatives
Similar tools to Intrigue Core:
Archery is a Django-based application to perform vulnerability assessments and do vulnerability management.
Dagda is a security tool to perform static analysis of known vulnerabilities, malware and threats in Docker images and containers. It monitors both the Docker daemon and running containers to find anomalies and suspicious activities.
OpenVAS is a framework of several services and tools offering a vulnerability scanning and vulnerability management solution.
This tool page was updated at . Found an improvement? Help the community by submitting an update.
Related tool information
- OSINT is short for open source intelligence, the practice of gathering data from publicly available resources. The open source in this context is not the same as in software development. Instead, it means that the data is available to anyone with the right knowledge or abilities to discover it.