A CLI tool for efficient metadata-to-business data conversion, with basic interface calls and data processing.

A JavaFX-based FOFA client that simplifies access to FOFA's powerful search engine with a concise UI.

A fast, simple FOFA query tool written in Go, with customizable FX syntax queries via a YAML config file.

FofaMap is a cross-platform FOFA data collector in Python3, supporting query, aggregation, survival detection, and duplicate removal, with keyword filtering and Excel report generation.

A simple Python wrapper for the FOFA API (supports Python), enabling easy integration of FOFA data into projects.

A Java SDK for FOFA Pro API, simplifying integration for Java developers.

An asset mapping tool for port scanning, TCP fingerprinting, banner capture, and brute force cracking, with minimal packet usage. It is the first open-source RDP brute force tool on the Go platform.

A Tampermonkey script that displays Fofa assets, providing a quick and intuitive overview of a website's assets.

A comprehensive info-gathering plugin for asset mapping, data collection, sensitive info extraction, and scanning (JS, directory, Vue), integrating popular platforms.

Assist the attacker to quickly collect information, map target assets, and find weaknesses. Simply enter the root domain name to collect all relevant assets and detect vulnerabilities.

ReconFTW is an automated reconnaissance tool for target domains, performing scans, vulnerability checks, and subdomain enumeration to gather maximum information.

OneForAll is a powerful subdomain collection tool.

Quickly discover exposed hosts on the internet using multiple search engines.

In-depth attack surface mapping and asset discovery.