This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

OWASP Maryam Project

Revision as of 19:24, 4 October 2019 by Saeeddhqan (talk | contribs)

Jump to: navigation, search
OWASP Project Header.jpg

OWASP Maryam Project

OWASP Maryam framework is an open source software application writted in Python for open-source intelligence(OSINT).



OWASP Maryam is a full-featured open-source intelligence(OSINT) framework written in Python. Complete with independent modules, built in functions, interactive help, and command completion, provides a command-line environment for used forensic and open-source intelligence(OSINT).

Maryam is a completely modular framework and makes it easy for even the newest of Python developers to contribute. Each module is a subclass of the "module" class.The "module" class is a customized "cmd" interpreter equipped with built-in functionality that provides simple interfaces to common tasks such as standardizing output, and making web requests. Therefore, all the hard work has been done. Building modules is simple and takes little more than a few minutes. See the Development Guide for guide information.

Can extract:

  • Comments, Links, CDNs, CSS and JS files and ..
  • Documentations(pdf, doc, ..)
  • Keywords, errors, usernames, ..
  • DNS, TLD, and bruteforce it.
  • SiteMap

Can identify:

  • Interesting and important files
  • Emails from search engines
  • Onion related links
  • Subdomains from different sources
  • Social networks
  • WebApps, WAF, ..
  • and ..



The Maryam is free to use and is licensed under the GPLv3 License. [to see the full license]

Quick Download

Project Leader


Project Type Files TOOL.jpg
Incubator Project Owasp-builders-small.png
Affero General Public License 3.0

News and Events


joomscan source code located in github and you could see contributors in this URL.

Please feel free to fork and submit your pull request to develop joomscan Project together.


This project is going to be the best Joomla scanner, At the end We could have a joomla cms penetration tester which is updated with the last vulnerabilities.


This Project was created to be a joomscanner which already it is and now need to be best with some tasks:

  • Optimize software core to be fast and easy to develop
  • make it module base and create libraries for developers
  • Support all OS
  • Be update with latest exploits.
  • Create documents for newbie users
  • Keep testing and fix bugs!


Please submit your feedbacks and issues in HERE.

  • What do like?
  • What don't you like?
  • What features would you like to see prioritized on the roadmap?
  • Do you have any problem with tool?
  • Do you need any exploit to be add?