edoardottt/awesome-hacker-search-engines

★ 10,606ShellAudience · researcherComplexity · 1/5Setup · easy

Mindmap

mindmap
  root((hacker-search-engines))
    Categories
      Server enumeration
      Vulnerability databases
      Exploit archives
      Leaked credentials
    Featured tools
      Shodan
      Censys
      NIST NVD
      MITRE CVE
    Research targets
      Exposed services
      Domain and DNS
      Surveillance cameras
      Cryptocurrency
    Audience
      Pentesters
      Bug bounty hunters
      Security researchers

mindmap root((hacker-search-engines)) Categories Server enumeration Vulnerability databases Exploit archives Leaked credentials Featured tools Shodan Censys NIST NVD MITRE CVE Research targets Exposed services Domain and DNS Surveillance cameras Cryptocurrency Audience Pentesters Bug bounty hunters Security researchers

Click or tap to explore — scroll the page freely

Things people build with this

USE CASE 1

Look up what ports and services a target server exposes to the internet using Shodan or Censys.

USE CASE 2

Search for known vulnerabilities affecting a specific software version using NIST or MITRE databases.

USE CASE 3

Find publicly leaked credentials or email addresses during a bug bounty reconnaissance phase.

USE CASE 4

Discover archived versions of a web page or historical DNS records for a domain under investigation.

Tech stack

Shell

Getting it running

Difficulty · easy Time to first run · 5min

No license information was mentioned in the explanation.

In plain English

This repository is a curated list of search engines and online tools aimed at security professionals. It covers a wide range of lookup tasks that come up during security work: finding exposed servers, researching known vulnerabilities, locating exploits, mapping the attack surface of a target, searching for leaked credentials, and more. The list is organized into roughly two dozen topic categories. The categories include general-purpose search engines, specialized tools for querying internet-connected servers and devices (such as Shodan and Censys, which index what ports and services machines expose to the internet), vulnerability databases from organizations like NIST and MITRE, exploit archives, tools for looking up domain records, DNS history, SSL certificate details, and WiFi network information. There are also sections covering email address lookups, phone number searches, social network research, image search, cryptocurrency tracking, threat intelligence feeds, archived web pages, and searches for exposed surveillance cameras. The project is a reference list, not a piece of software. There is no code to run or install. Each entry is a link to an external website, along with a short description of what that site does. The list is long and actively maintained, making it a practical starting point for someone who wants to know what tools exist for a particular research or testing task rather than having to discover each one independently. The intended audience is penetration testers, bug bounty hunters, and security researchers who need to gather information about systems, services, or individuals as part of authorized security assessments. The full README is longer than what was shown.

Copy-paste prompts

Prompt 1

I'm doing bug bounty recon on a target domain. Which tools in awesome-hacker-search-engines should I use first to map exposed subdomains and open ports?

Prompt 2

Which search engines in this list let me find exposed surveillance cameras on the public internet?

Prompt 3

I found a CVE number for a vulnerability. Which sites in this list can I use to look up available exploit code?

Prompt 4

I need to track cryptocurrency wallet addresses linked to a security incident. Which tools from this list support blockchain lookups?

Prompt 5

Recommend the best tools from awesome-hacker-search-engines for finding leaked email and password combinations.

Open on GitHub → Explain another repo

← edoardottt on gitmyhub — every repo by this author, as a profile.

Verify against the repo before relying on details.