Attack surface discoveryOpen Source

OWASP Amass

Attack surface and DNS enumeration.

Open-source tool for in-depth DNS enumeration, subdomain discovery, and external attack surface mapping.

OSINTOpen SourceOfficial site listedCommunity voting
Visit site

Overview

What OWASP Amass is good for

Open-source tool for in-depth DNS enumeration, subdomain discovery, and external attack surface mapping.

Built for osint and vulnerability management workflows.

Useful when evaluating attack surface discovery capabilities.

Helpful for dns, subdomains, attack-surface investigations and triage.

Evaluation guide

Quick decision notes

Best fit

Investigators collecting public web, domain, URL, identity, and infrastructure evidence.

Check before using

Confirm current pricing, data limits, account requirements, and licensing on the official site before production use.

Typical inputs

#dns · #subdomains · #attack-surface

Discovery path

Use the categories, source links, and similar tools below to compare it with nearby options.

Use cases

Where it fits

Investigators collecting public web, domain, URL, identity, and infrastructure evidence.
Security teams prioritising vulnerabilities with exposure and real-world exploitation signals.

Classification

Categories and tags

OSINTVulnerability Management#dns#subdomains#attack-surface

Sources

Official links and checks

Use these links to verify current plans, access requirements, documentation, releases, and support status.

Reviews

Community reviews and comments

Community reviews

Comment provider is not configured yet. This placeholder keeps the review area visible while setup is completed.

Suggest a review

FAQ

Questions about OWASP Amass

What is OWASP Amass used for?

OWASP Amass is used for attack surface discovery workflows. Open-source tool for in-depth DNS enumeration, subdomain discovery, and external attack surface mapping.

Is OWASP Amass free?

The listed pricing model is Open Source. Check the official site for exact plan limits, usage restrictions, and current commercial terms.

Which teams should evaluate OWASP Amass?

It is most relevant to teams working across osint, vulnerability management workflows.

What are alternatives to OWASP Amass?

Start with the similar tools section on this page. It highlights tools with overlapping categories, tags, and operational use cases.