Censys
Search internet-facing assets and certificates across a large internet map.
- slug
- censys
- visibility
- Public
- risk
- caution
- level
- 0
What this tool does.
Censys helps researchers query internet-facing hosts, certificates and related infrastructure from a continuously updated internet-intelligence dataset.
Useful for asset discovery, exposure analysis and infrastructure-centric investigations.
Dev-docs · 2 documents.
Related articles.
Choosing Between Manual, Semi-Automated and Automated OSINT Workflows
Not every investigation benefits from more automation. Here is how to choose between manual, semi-automated, and automated workflows without losing context or control.
A Practical Method for Domain and Infrastructure Recon
A practical framework for reading domains, certificates, DNS history, stack hints, and broader internet-facing context without turning infrastructure research into noise.
crt.sh vs SecurityTrails vs Censys: Three Different Ways to Read Infrastructure
crt.sh, SecurityTrails, and Censys all help with infrastructure research, but they answer different questions and belong at different points in the workflow.
Passive First: When Public Web Research Should Stay Narrow
A practical argument for staying narrow and passive as long as possible in public web research, before broader or more interaction-heavy methods start adding noise.
Related tools.
Other tools that share a category with this one.
crt.sh
Search certificate-transparency logs for certificates and related hostnames.
SecurityTrails
Explore current and historical DNS, domain and infrastructure data.
VirusTotal
Check files, URLs and indicators against many security engines and community context.
AlienVault OTX
Browse and share open threat-intelligence indicators and pulses.
SpiderFoot
Automate multi-source OSINT collection and correlation from a single workflow.