A list of search engines useful during Penetration testing, vulnerability assessments, red team operations, bug bounty and more

General • Servers • Vulnerabilities • Exploits • Attack surface • Code • Mail addresses • Domains • URLs • DNS • Certificates • WiFi networks • Credentials • Social Networks • Phone numbers • Threat Intelligence • Web History

• Google
• Bing
• Yahoo!
• Yandex

• Shodan - Search Engine for the Internet of Everything
• Onyphe.io - Cyber Defense Search Engine for open-source and cyber threat intelligence data
• ZoomEye - Global cyberspace mapping
• GreyNoise - The source for understanding internet noise
• Natlas
• FOFA

• NIST NVD - National Vulnerability Database
• MITRE CVE - Identify, define, and catalog publicly disclosed cybersecurity vulnerabilities
• osv.dev - Open Source Vulnerabilities
• cloudvulndb.org - The Open Cloud Vulnerability & Security Issue Database
• Vulners.com - Your Search Engine for Security Intelligence
• opencve.io - Easiest way to track CVE updates and be alerted about new vulnerabilities
• security.snyk.io - Open Source Vulnerability Database
• Rapid7 - DB - Vulnerability & Exploit Database
• CVEDetails - The ultimate security vulnerability datasource
• VulnIQ
• SynapsInt - The unified OSINT research tool
• Aqua Vulnerability Database - Vulnerabilities and weaknesses in open source applications and cloud native infrastructure

• Exploit-DB - Exploit Database
• Sploitus - Convenient central place for identifying the newest exploits
• Rapid7 - DB - Vulnerability & Exploit Database

• FullHunt.io - Attack surface database of the entire Internet
• BynaryEdge - We scan the web and gather data for you
• Censys - Attack Surface Management Solutions
• RedHunt Labs - Discover your Attack Surface, Continuously
• SecurityTrails - The Total Internet Inventory
• criminalip.io - Cyber Threat Intelligence Search Engine and Attack Surface Management(ASM) platform

• GitHub Code Search
• grep.app - Search across a half million git repos
• publicwww.com - Find any alphanumeric snippet, signature or keyword in the web pages HTML, JS and CSS code
• SearchCode - Search 75 billion lines of code from 40 million projects
• NerdyData - Find companies based on their website's tech stack or code
• RepoSearch - Source code search engine that helps you find implementation details, example usages or just analyze code

• Hunter.io - Find professional email addresses in seconds
• PhoneBook - Lists all domains, email addresses, or URLs for the given input domain
• IntelligenceX - Search engine and data archive
• Reacher.email - Open-Source Email Verification
• RocketReach
• email-format.com - Find the email address formats in use at thousands of companies
• EmailHippo - Email address verification technology
• ThatsThem - Reverse email lookup
• verify-email.org
• Melissa - Emailcheck
• VoilaNorbert - I can find anyone's email address
• SynapsInt - The unified OSINT research tool
• skymem.info - Find email addresses of companies and people

• PhoneBook - Lists all domains, email addresses, or URLs for the given input domain
• IntelligenceX - Search engine and data archive
• Omnisint - Subdomain enumeration
• Riddler - Allows you to search in a high quality dataset
• RobTex - Various kinds of research of IP numbers, Domain names, etc
• CentralOps - DomainDossier
• DomainIQ
• whois.domaintools.com
• grayhatwarfare.com - domains
• whoisology.com
• who.is
• pentest-tools.com
• BuiltWith
• MoonSearch
• sitereport.netcraft.com
• SynapsInt
• statscrop.com
• securityheaders.com
• visualsitemapper.com
• similarweb.com
• buckets.grayhatwarfare.com - Public buckets
• C99.nl

• PhoneBook
• IntelligenceX
• URLScan
• HackerTarget
• MOZ Link Explorer
• spyonweb.com
• shorteners.grayhatwarfare.com

• DNSDumpster
• RapidDNS
• DNSdb
• Omnisint - Reverse DNS lookup
• HackerTarget
• passivedns.mnemonic.no
• ptrarchive.com
• dnshistory.org
• DNSTwister
• DNSviz
• C99.nl

• Crt.sh
• CTSearch
• TLS.BufferOver.run
• CertSpotter
• SynapsInt
• Censys - Certificates

• Wigle.net

• Have I Been Pwned
• Dehashed
• Leak-Lookup
• Snusbase
• LeakCheck.io
• crackstation.net
• breachdirectory.org

These can be useful for osint and social engineering.

• Facebook
• Instagram
• YouTube
• Twitter
• LinkedIn
• Reddit
• Pinterest
• Tumblr
• Flickr
• SnapChat
• Whatsapp
• Quora
• TikTok
• Vimeo
• Medium
• WeChat
• VK
• Weibo
• Tinder

• RocketReach
• NumLookup
• WhitePages
• National Cellular Directory
• Phone Validator
• Free Carrier Lookup
• sync.me
• EmobileTracker
• SpyDialer
• Reverse Phone Lookup
• ThatsThem - Reverse phone lookup
• thisnumber.com
• usphonebook.com
• truecaller.com
• truepeoplesearch.com
• SynapsInt
• C99.nl

• PulseDive
• ThreatCrowd
• ThreatMiner
• VirusTotal
• Rescure
• otx.alienvault
• urlquery.net
• bazaar.abuse.ch
• feodotracker.abuse.ch
• sslbl.abuse.ch
• urlhaus.abuse.ch
• threatfox.abuse.ch

• Web Archive
• Archive.ph
• CachedPages
• stored.website
• CommonCrawl

• Spyse
• NetoGraph
• DNS.BufferOver.run
• Chaos
• PassiveTotal

If you want to propose changes, just open an issue.