Automic VaultAutomic Vault

brew

Install amass with Homebrew, MacPorts, Nix, scoop, winget

In-depth attack surface mapping and asset discovery. Version 5.1.1 via Homebrew; verified from local package data.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install amass

local Homebrew formula metadata

MacPortsverified · 94%
sudo port install amass

MacPorts ports tree · security/amass/Portfile · source: api.github.com

Linux

Nixverified · 92%
nix profile install nixpkgs#amass

nixpkgs package indexes · pkgs/by-name/am/amass/package.nix · source: api.github.com

Windows

Scoopverified · 92%
scoop install main/amass

Scoop official bucket manifest trees · bucket/amass.json · source: api.github.com

Windows Package Managerverified · 92%
winget install --id OWASP.Amass -e

Windows Package Manager source index · OWASP.Amass · source: cdn.winget.microsoft.com

overview

Package summary

In-depth attack surface mapping and asset discovery

Commands and aliases

  • amass

history

Project history and usage

OWASP Amass is an attack-surface mapping and external asset discovery tool for security teams, red teams, bug bounty hunters, and OSINT-heavy workflows. Its core appeal is that it aggregates many open-source intelligence, DNS, certificate, routing, scraping, archive, WHOIS, and API-backed data sources into one repeatable CLI workflow.

Project history

The GitHub repository was created in July 2018 and the README identifies the project as an OWASP project maintained around network mapping of attack surfaces and external asset discovery. The program copyright in the README attributes OWASP Amass and contributions to Jeff Foley for 2017-2023, reflecting pre-OWASP or pre-current-repository origins before the current repository history.

Amass evolved from a subdomain-enumeration tool into a broader graph-oriented external attack-surface mapper. Its official documentation now describes YAML configuration for scan scope, data sources, transformations, engine APIs, graph databases, and programmatic use as a Go library.

Adoption history

Amass became a standard package in security distributions and package managers because it automated a tedious recon workflow: combine passive sources, DNS techniques, certificate transparency, web archives, routing data, and optional active probing under one command. The official README lists Homebrew, prebuilt release packages, Docker images, and source installation paths.

The project's own README and REFERENCES file document adoption in talks, trainings, and practitioner workflows, including DEF CON and Red Team Village references, OWASP chapter material, bug bounty tutorials, and testimonials from Accenture and Visma red-team users.

How it is used

Typical use is the amass CLI, especially enumeration against a domain, optionally with configured API keys for premium or authenticated data sources. Configuration is YAML-based: config.yaml controls scope and options, while datasources.yaml stores data-source credentials such as API keys, usernames, passwords, and secrets.

The README also documents Docker usage with a mounted /.config/amass directory so the graph database and output can persist across runs. That detail is important for package users because Amass is not merely a stateless scanner: its value grows when outputs, graph data, and source credentials are managed carefully.

Why package nerds care

Amass is a good example of a security CLI whose packaging is not just about the binary. Useful installs need correct config paths, data-source credential handling, shell ergonomics, and sometimes a database or persistent output directory.

It also shows how modern security tooling lands in general-purpose package managers: it is a Go binary, but it has an unusually large operational surface because its value depends on many external OSINT providers and frequently changing integrations.

Timeline

  • 2017: README copyright range begins for Jeff Foley and OWASP Amass contributions.
  • 2018-07-10: Current owasp-amass/amass GitHub repository is created.
  • 2023-09-10: Amass v4.2.0 release is published.
  • 2025-08-03: Amass v5.0.0 release is published.
  • 2026-04-07: Amass v5.1.1 release is published.

Related projects

  • OWASP is the umbrella project home and provides the public project page.
  • Shodan, Censys, SecurityTrails, VirusTotal, DNSDB, Wayback, Common Crawl, GitHub, GitLab, and many other data sources are integrations or data inputs rather than sibling code projects.
  • The Amass Go module and scripting/documentation surface support more advanced integrations beyond simple CLI use.

security posture

Risk level: green

narrow executable package without higher-risk signals.

Risk classifier

green risk · low confidence · appliance

Why

  • narrow executable package without higher-risk signals

Signals

  • metadata:no-higher-risk-signals

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Build metadata lists 1 build dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

local files

Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.

Configuration files

Config paths the tool may read or write during local use.

Unix
~/.config/amass/config.yaml/etc/amass/config.yaml

Credential files

Credential-bearing paths to review before unattended agent runs.

Unix
~/.config/amass/datasources.yaml/etc/amass/datasources.yaml

executables

Installed executables

CommandKindExposureNote
amasscliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version5.1.1
manager updated
local dataok
upstreamcurrent
latest detectedv5.1.1

https://github.com/owasp-amass/amass

  • infoNo package-manager update timestamp was available.low confidence

install metadata

Package metadata

Package keybrew:amass
Version5.1.1
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/amass
Homepagehttps://owasp.org/www-project-amass/
Repositoryhttps://github.com/owasp-amass/amass
Upstream docshttps://owasp-amass.github.io/docs
LicenseApache-2.0
Source archivehttps://github.com/owasp-amass/amass/archive/refs/tags/v5.1.1.tar.gz
Build dependenciesgo
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Nameamass
Version Scheme0
Revision0
Head VersionHEAD
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • head
  • stable

source database matches

Other package-manager records

Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.

Nix95%

amass

nix profile install nixpkgs#amass
  • normalized package name match
  • Matched by: Amass
nixpkgs package indexes · api.github.com · nixpkgs package indexes: pkgs/by-name/am/amass/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
MacPorts95%

amass

sudo port install amass
  • normalized package name match
  • Matched by: Amass
MacPorts ports tree · api.github.com · MacPorts ports tree: security/amass/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
Scoop95%

main/amass

scoop install main/amass
  • normalized package name match
  • Matched by: Amass
Scoop official bucket manifest trees · api.github.com · Scoop official bucket manifest trees: bucket/amass.json from https://api.github.com/repos/ScoopInstaller/Main/git/trees/master?recursive=1
winget95%

OWASP.Amass

winget install --id OWASP.Amass -e
  • normalized package name match
  • Matched by: Amass
Windows Package Manager source index · cdn.winget.microsoft.com · Windows Package Manager source index: OWASP.Amass from https://cdn.winget.microsoft.com/cache/source.msix

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated configuration and credential file locations
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment