Security search engines

🔎Search Engines for Pentesters – @NandanLohitaksh🔍#bugbountytips #BugBounty #Ethicalhacking #cybersecurity pic.twitter.com/6GmeIHG1Py

— Harsh🧢 (@harshinsecurity) July 15, 2022

External:
ShoDan the most popular vulnerability database
DNSDumpster finds attack surface, makes a nice graphic
FullHunt.io finds attack surface
exploit-db type the name of software or SaaS and get a list of vulnerabilities and CVE#s
GreyNoise type an IP address tfrom logs and verify if it is a threat actor or Benign. useful
IntelligenceX enter an IP, domain, URL, email address, CIDR, Bitcoin addr etc. email= list of breaches
NetLas whoIs, AttkSurface, Responses, Certificate search
onyphe.io Attack Surface VulnScan and RiskScan are paid only
SearchCode Source code search engine
UrlScan public website scanner
Wigle Maps wireless networks onto maps