Photon

Photon is a fast and flexible crawler tailored for open source intelligence gathering. It systematically crawls websites to extract valuable data such as in-scope and out-of-scope URLs, URLs with parameters, intel including emails, social media accounts, and Amazon buckets, various file types like PDFs and PNGs, secret keys such as auth/API keys and hashes, JavaScript files along with their endpoints, strings matching custom regex patterns, and subdomains with DNS-related data.

Use cases include reconnaissance during penetration testing, OSINT investigations, and security assessments where comprehensive web crawling is needed to map out a target's digital footprint. The tool organizes extracted information for easy analysis or exports it as JSON or CSV for further processing.

It supports customizable crawling levels, threading for speed, delays to respect rate limits, and various output options, making it versatile for both quick scans and deep dives into web applications.

Photon operates as a multi-threaded web crawler starting from a root URL, recursively following links up to specified levels. It uses HTTP requests with optional cookies, custom user agents, and headers to mimic browser behavior, respecting timeouts and delays. During crawling, it parses responses to identify and extract targeted data types using pattern matching, regex, and heuristics for URLs, parameters, intel, files, keys, JS endpoints, and DNS/subdomains. Data is organized into directories or exported in structured formats like JSON.