amass ☆

« Back to VersTracker

Description:
In-depth attack surface mapping and asset discovery

Type: Formula | Latest Version: 5.0.1@0 | Tracked Since: Dec 17, 2025

Links: Homepage | @owaspamass | formulae.brew.sh

Category: Security

Tags: reconnaissance pentesting osint subdomain enumeration security

Install: brew install amass

About:
OWASP Amass is a comprehensive network reconnaissance and attack surface mapping tool. It performs extensive data collection through various techniques including DNS enumeration, subdomain brute-forcing, and web scraping to discover external assets. The tool aggregates data from multiple sources to provide security professionals with a complete inventory of an organization's digital footprint.

Key Features:

Passive reconnaissance through open source intelligence gathering
Active enumeration via DNS brute-forcing and recursive subdomain discovery
Network mapping with autonomous system discovery and port scanning
Comprehensive data correlation from multiple public data sources
Output formatting support for multiple tools and visualizations

Use Cases:

Penetration testing reconnaissance phases to map target attack surfaces
Asset inventory and shadow IT discovery for organizational security
Red team operations for identifying external exposure and potential entry points
Security assessments to evaluate an organization's digital footprint

Alternatives:

subfinder – Lighter-weight passive subdomain enumeration tool with fewer active reconnaissance features
massdns – High-performance DNS resolver focused on brute-forcing rather than comprehensive OSINT gathering
recon-ng – Python-based reconnaissance framework with modular approach but steeper learning curve

License: Apache-2.0

Bottles available for: arm64_tahoe, arm64_sequoia, arm64_sonoma, arm64_ventura, sonoma, ventura, arm64_linux, x86_64_linux

Version History

Detected	Change	Commit
Sep 13, 2025 10:09am	VERSION_BUMP	0134b5c0
Nov 9, 2024 6:30pm	VERSION_BUMP	b8c54653
Nov 9, 2024 10:43am	VERSION_BUMP	a9429661