信息收集思路&&工具分享

　　信息收集思路&&工具分享

　　1. 企查查-爱企查-天眼查

　　获取公司及子公司信息

　　https://github.com/cqkenuo/appinfoscannerhttps://www.qcc.com/https://www.tianyancha.com/https://aiqicha.baidu.com/google.com \ baidu.com \ bing.cn

　　2. 收集子域名

　　收集目标子域名信息

　　https://x.threatbook.cn/https://github.com/shmilylty/OneForAllLayer子域名挖掘机https://github.com/lijiejie/subDomainsBrutehttps://github.com/Jewel591/SubDomainFinderhttps://github.com/aboul3la/Sublist3rhttps://github.com/knownsec/ksubdomainhttps://github.com/Threezh1/JSFindergoogle.com \ baidu.com \ bing.cnhttp://tool.chinaz.com/dnshttps://www.dnsdb.iohttps://fofa.so/https://www.zoomeye.org/https://www.shodan.io/https://censys.io/DNSenumnslookuphttps://www.isc.org/download/https://code.google.com/archive/p/dnsmap/https://github.com/0x727/ShuiZe_0x727

　　3. 域名指纹识别

　　对上面收集到的域名进行识别

　　https://github.com/EdgeSecurityTeam/EHolehttps://github.com/al0ne/Vxscanhttps://github.com/EASY233/Fingerhttps://github.com/TideSec/TideFingerhttps://github.com/urbanadventurer/WhatWebhttps://gobies.org/https://www.yunsee.cn/https://github.com/s7ckTeam/Glasshttps://github.com/TideSec/TideFingerhttps://scan.dyboy.cn/web/https://fp.shuziguanxing.com/#/https://builtwith.com/zh/https://github.com/FortyNorthSecurity/EyeWitnesshttps://www.yunsee.cn/https://www.wappalyzer.com/https://github.com/0x727/ObserverWardhttps://github.com/0x727/ShuiZe_0x727https://github.com/P1-Team/AlliNhttps://github.com/dr0op/bufferfly

　　4. IP收集、C段收集、端口

　　根据域名收集对应的IP

　　如果遇到CDN可以考虑以下方法：

　　如果没有CDN就直接扫

　　nmapmasscanhttps://github.com/EdgeSecurityTeam/Eeyeshttps://github.com/shadow1ng/fscanhttps://github.com/Adminisme/ServerScanhttps://github.com/EdgeSecurityTeam/EHole

　　5. 目录扫描

　　https://github.com/maurosoria/dirsearchdirbustergobusterdirbhttps://github.com/xmendez/wfuzzhttps://github.com/foryujian/yjdirscanhttps://github.com/H4ckForJob/dirmap

　　6. 微信小程序信息收集7. 微信公众号信息收集8. 支付宝小程序信息收集9. APP信息收集

　　https://github.com/projectdiscovery/nuclei/blob/master/README_CN.md<br style="margin: 0px;padding: 0px;outline: 0px;max-width: 1000%;box-sizing: border-box !important;overflow-wrap: break-word !important;" />https://github.com/smicallef/spiderfoot

　　10. 网站JS信息收集

　　https://github.com/Threezh1/JSFinderhttps://github.com/GerbenJavado/LinkFinderhttps://github.com/rtcatc/Packer-Fuzzer (webpack)https://github.com/momosecurity/FindSomething

　　11. 其他信息收集