What is OWASP Amass?
OWASP Amass is an open source network mapping and asset discovery tool developed by Jeff Foley. It can be used to passively map out an organization's external attack surface by collecting information from public sources like certificate transparency logs, search engines, subdomain brute forcing, and more.
Some key features of OWASP Amass include:
- Integration with data sources like crt.sh, CertSpotter, DNSDB, AlienVault OTX, etc. to discover subdomains and other assets
- Active subdomain brute forcing as well as scraping of web archives
- Network service scanning to accurately identify listening TCP ports associated with discovered assets
- Comprehensive HTML reports that outline all discovered assets
OWASP Amass is useful for offensive security activities like penetration testing, red teaming, and attack surface mapping. It can help identify external assets that could be vulnerable entry points into an organization's network. The information gathered by Amass can feed into other security tools for further enumeration and exploitation.
As an open source tool, OWASP Amass benefits from contributions by the security community. It runs on Linux, Windows, and macOS and is free to use.