Broad asset inventory宽范围资产盘点
SpiderFoot
SpiderFoot alternatives by job按任务选择 SpiderFoot 替代品
Each tool fits a different job. Use the table below to pick the right one, then read the detail to avoid the wrong-fit trap.每个工具适合不同任务。先用下面表格匹配,再看细节避开用错场景。
Quick comparison快速对比
| Tool | Best for适合任务 | Self-hosted自托管 | Cost成本 | Setup难度 | Risk风险 |
|---|---|---|---|---|---|
| SpiderFootautomation framework | broad authorized asset inventory宽范围授权资产盘点 | yes | open source / commercial HX | medium | medium |
| theHarvesterCLI collector | domain, email and host discovery域名、邮箱和主机发现 | yes | open source | low-medium | medium |
| Recon-ngrecon framework | repeatable modular reconnaissance workflows可复用模块化侦察工作流 | yes | open source | high | medium |
| Maltegograph platform | relationship mapping and investigation graphs关系图谱和调查分析 | partial | freemium / paid | medium | medium |
| Shodansearch engine | internet exposure lookup互联网暴露面查询 | no | limited free / paid | low | medium |
| Censyssearch engine | host and certificate exposure research主机和证书暴露面研究 | no | limited free / paid | low | medium |
Detail: best-fit vs bad-fit详情:适合 vs 不适合
| Tool | Best for适合任务 | Setup难度 | Active/Passive主动/被动 | Not ideal for不适合 |
|---|---|---|---|---|
| SpiderFootautomation framework | broad authorized asset inventory宽范围授权资产盘点 | medium | mixed | one-off quick email lookup or unscoped third-party targets一次性邮箱查询或无范围第三方目标 |
| theHarvesterCLI collector | domain, email and host discovery域名、邮箱和主机发现 | low-medium | mostly passive with source-dependent behavior | relationship graphing or broad case management关系图谱或大范围案件管理 |
| Recon-ngrecon framework | repeatable modular reconnaissance workflows可复用模块化侦察工作流 | high | module dependent | beginners who only need a quick answer只想快速得到答案的新手 |
| Maltegograph platform | relationship mapping and investigation graphs关系图谱和调查分析 | medium | transform dependent | simple local CLI inventory简单本地 CLI 盘点 |
| Shodansearch engine | internet exposure lookup互联网暴露面查询 | low | passive lookup | private intranet or non-indexed assets内网或未被索引资产 |
| Censyssearch engine | host and certificate exposure research主机和证书暴露面研究 | low | passive lookup | local-only checks or private datasets本地检查或私有数据集 |
Decision rules选择规则
Lightweight domain/email discovery轻量域名/邮箱发现
theHarvester
Repeatable recon workflow可复用侦察流程
Recon-ng
Graph investigation关系图谱调查
Maltego
Internet exposure lookup互联网暴露查询
Shodan / Censys