Tool profile

/

Recon-ng

Open-source modular reconnaissance framework for technical OSINT

Verification: Pending Verification Status: Active
Best for Technical analysts who need repeatable passive reconnaissance and enrichment around domains, organizations, contacts, or infrastructure leads.
Workflow Discovery, Enrichment
Pricing / access Free · Desktop, Self-Hosted
Last verified 2026-05-06
Visit official site Suggest a correction Trust notes

Claims and corrections are reviewed before public profile changes.

Signal summary

  • Vendorlanmaster53
  • PlatformCLI
  • Reviewed2026-05-06

Trust / disclosure

How to read this profile

Editorial

Editorial line

Editorial judgment and commercial context stay separate on OSINT4ALL.

Review status

Hands-on notes or editorial review dates are attached where available.

Claims / submissions

Corrections and claim requests are reviewed before any public change is made.

Commercial context

No commercial relationship is disclosed on this profile.

Editorial verdict

Use case and fit

This is editorial guidance, not vendor copy.

Best for

Technical analysts who need repeatable passive reconnaissance and enrichment around domains, organizations, contacts, or infrastructure leads.

Editorial read

Good fit for advanced OSINT and security teams, but it needs strong process discipline to avoid noisy or unsupported conclusions.

Overview

Best when technical OSINT needs a modular command-line workspace for passive reconnaissance and enrichment.

Operational snapshot

Workflow, access, and coverage

WorkflowDiscovery, Enrichment
PricingFree
AccessDesktop, Self-Hosted
RegionsGlobal
LanguagesEnglish
StatusActive
Recommended workflow

Keep the workspace scoped, prefer passive modules, record sources and run dates, export only relevant leads, then corroborate high-value findings with primary records or independent tools.

Language notes

Interface and documentation are English-first. Source data returned by modules can be multilingual.

Limits

Strengths, caveats, and risk

Strengths

Workspace-driven approach, modular collection model, and repeatability for analysts comfortable with command-line tooling.

Limitations

Requires technical skill, setup time, source/API configuration, and careful documentation to keep outputs interpretable.

Coverage depends on modules and external sources. Results are not proof of attribution or relationship by themselves and may include stale or incomplete data.

Risk note

Automated reconnaissance can create noisy, sensitive, or overbroad datasets. Do not treat collected leads as verified facts.

Keep collection passive unless you have authority for active checks. Respect source terms, API limits, and local law.

Trust note

Treat module output as source-specific evidence. Record provenance and verify important leads outside the framework.

Alternatives

Alternatives

Maintenance

Last verified & suggest an update

Help keep this profile accurate. Update requests are reviewed and logged before publication.

Last verified: 2026-05-06

If something is outdated, please submit a correction or verified update request. Claim requests are reviewed and do not grant editorial control.

Commercial or sponsorship requests use the separate partner workflow.

Claim / Correct Listing