ENNAENNA

Osmedeus

MIT

Vulnerability Scanning · Go

Osmedeus is a workflow engine for offensive security that automates the entire reconnaissance and vulnerability assessment pipeline. It chains together subdomain enumeration, port scanning, web crawling, screenshot capture, vulnerability scanning, and notification into configurable YAML workflows. Osmedeus manages distributed scanning across multiple machines, deduplicates findings, and stores results in a searchable database with a web UI. It integrates dozens of tools (subfinder, httpx, nuclei, nmap, etc.) into coherent automated pipelines that run continuously or on-demand. Designed for bug bounty hunters and penetration testers managing multiple targets simultaneously.

6.2kstars
979forks
5issues
Updated 12d ago
+I use this
View on GitHubOfficial Website

Installation

$ go install github.com/j3ssie/osmedeus@latest

Use Cases

  • Automated multi-tool reconnaissance pipelines
  • Continuous vulnerability scanning across targets
  • Distributed scanning with result aggregation
  • Bug bounty target management and monitoring

Tags

automationrecon-pipelineworkflow-enginevulnerability-scanningbug-bountyagentic-aiattack-surface-managementbugbountygohackinghacking-toolllmosintpenetration-testingpentestingreconnaissancesecuritysecurity-toolsworkflows

Details

Category
Vulnerability Scanning
Language
Go
Repository
j3ssie/osmedeus
License
MIT
Platforms
🐧linux🍎macos

Links

GitHub Repository

github.com/j3ssie/osmedeus

Official Website

www.osmedeus.org

Releases

github.com/j3ssie/osmedeus/releases

Issues

github.com/j3ssie/osmedeus/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Community Reviews

Alternatives & Comparisons

Nuclei

Go

Fast vulnerability scanner driven by YAML templates. Thousands of community-contributed detection templates.

Compare Osmedeus vs Nuclei

BBOT

Python

Recursive internet scanner for automated recon, bug bounties, and attack surface management with 100+ modules.

Compare Osmedeus vs BBOT

reNgine

Python

Automated reconnaissance framework with correlated scan engines, continuous monitoring, and vulnerability reporting.

Compare Osmedeus vs reNgine

reconftw

Shell

Automated recon pipeline orchestrating subdomain enum, vulnerability scanning, and OSINT via best-of-breed tools.

Compare Osmedeus vs reconftw

More in Vulnerability Scanning

Nuclei

Go

Fast vulnerability scanner driven by YAML templates. Thousands of community-contributed detection templates.

template-basedcvemisconfig

sqlmap

Python

Automatic SQL injection and database takeover tool. Detects and exploits SQL injection flaws.

sql-injectiondatabaseautomated

WPScan

Ruby

WordPress security scanner. Enumerates plugins, themes, users, and checks for known vulnerabilities.

wordpressplugin-enumcve

OpenVAS

C

Full-featured vulnerability scanner. 50,000+ NVTs, credentialed scanning, compliance checks.

enterprisenvtcompliance

XSStrike

Python

Advanced XSS detection suite. Fuzzing engine, context analysis, and WAF detection/bypass capabilities.

xsswaf-bypassfuzzing

Commix

Python

Automated OS command injection exploitation tool. Tests web apps for command injection vulnerabilities.

command-injectionautomatedweb-app