Pamp is an Attack Surface Intelligence Platform designed for security researchers and penetration testers. It combines infrastructure reconnaissance, application mapping, JavaScript intelligence, and interactive offline reporting into a single workflow.
- IP Intelligence
- Domain Intelligence
- DNS / RDAP / TLS Analysis
- HTTP Security Analysis
- Application Blueprint
- Application Route Intelligence
- JavaScript Intelligence
- Technology Fingerprinting
- Nmap Integration
- Public Mentions Search
- Interactive Offline HTML Reports
- English / Russian Localization
- Python 3.11+
- Rich
- Requests
- Playwright
- BeautifulSoup4
- Jinja2
- NetworkX
- PyVis
- Cryptography
python -m venv .venv
.\.venv\Scripts\Activate.ps1
pip install -r requirements.txt
python -m playwright install chromiumRun Pamp:
python -m pamp.mainor
python pamp/main.pyAnalyze an IP address and collect:
- Geolocation
- ASN Information
- Reverse DNS
- Hosting Information
- Infrastructure Details
Comprehensive domain reconnaissance including:
- DNS Records
- RDAP / WHOIS
- Certificate Transparency
- TLS Certificate Analysis
- HTTP Fingerprinting
- Security Headers
- HTML Analysis
- Technology Detection
- Tracker Detection
- Public Resources
- Historical Intelligence
- Reputation Intelligence
Automatically discovers:
- Application Blueprint
- Route Structure
- JavaScript Assets
- API Endpoints
- OAuth Endpoints
- WebSocket Connections
- Cloud Storage References
Pamp generates a fully interactive offline HTML report featuring:
- Search
- Filtering
- Sidebar Navigation
- Timeline
- Interactive Graphs
- Attack Surface Summary
- English / Russian Localization
Pamp relies only on publicly available sources.
Examples include:
- RDAP
- crt.sh
- Cloudflare DNS
- Internet Archive
- AlienVault OTX
- OpenPhish
- PhishTank
- URLHaus
- ThreatFox
No paid APIs are required.
Main CLI interface with available analysis modules, language selection, and quick access to the current workspace.
Target initialization and reconnaissance workflow for a new analysis session.
Live progress view showing module execution and real-time analysis status.
Completed analysis with generated artifacts, statistics, and an interactive HTML report ready for review.
Interactive offline HTML report with navigation, filtering, search, visual analytics, and detailed findings.
Interactive application graph that visualizes discovered pages, APIs, technologies, relationships, and attack surface components.
Infrastructure visualization connecting domains, IP addresses, services, ports, certificates, and network relationships.
HTTP reconnaissance including response headers, security headers, technologies, redirects, and response metadata.
Detailed HTTP intelligence with endpoint grouping and response classification.
Expanded HTTP analysis highlighting additional application characteristics and security observations.
Discovered application endpoints collected from HTML, JavaScript, browser traffic, and application assets.
Extended endpoint analysis with categorized routes and additional discovered resources.
Comprehensive IP intelligence including ASN, hosting provider, geolocation, network ownership, and infrastructure details.
Additional IP intelligence with extended infrastructure and security information.
Relationship graph connecting IP addresses with domains, services, technologies, certificates, and security findings.
Offline geographic visualization showing the approximate location of analyzed infrastructure.
Traffic chain overview illustrating how requests travel through the application infrastructure from client to origin.
Pamp:
- does not require API keys
- does not require
.env - masks sensitive values in reports
- does not brute-force endpoints
- does not attempt to crack or decrypt secrets
Pamp is intended for authorized security testing, research, and educational purposes only.
Use this software only against systems you own or have explicit permission to assess.
















