JoshuaMart / Autorecon
Simple shell script for automated domain recognition with some tools
Stars: ✭ 244
Programming Languages
shell
77523 projects
Projects that are alternatives of or similar to Autorecon
targets
A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.
Stars: ✭ 85 (-65.16%)
Mutual labels: recon, bugbounty, reconnaissance
Lazyrecon
An automated approach to performing recon for bug bounty hunting and penetration testing.
Stars: ✭ 282 (+15.57%)
Mutual labels: reconnaissance, recon, bugbounty
Megplus
Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
Stars: ✭ 268 (+9.84%)
Mutual labels: reconnaissance, recon, bugbounty
Autosetup
Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.
Stars: ✭ 140 (-42.62%)
Mutual labels: reconnaissance, recon, bugbounty
Awesome Bbht
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Stars: ✭ 190 (-22.13%)
Mutual labels: reconnaissance, recon, bugbounty
Reconky-Automated Bash Script
Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
Stars: ✭ 167 (-31.56%)
Mutual labels: recon, bugbounty, reconnaissance
Recon Pipeline
An automated target reconnaissance pipeline.
Stars: ✭ 278 (+13.93%)
Mutual labels: reconnaissance, recon, bugbounty
flydns
Related subdomains finder
Stars: ✭ 29 (-88.11%)
Mutual labels: recon, bugbounty, reconnaissance
Getjs
A tool to fastly get all javascript sources/files
Stars: ✭ 190 (-22.13%)
Mutual labels: reconnaissance, recon, bugbounty
3klcon
Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.
Stars: ✭ 189 (-22.54%)
Mutual labels: reconnaissance, recon, bugbounty
AttackSurfaceManagement
Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty
Stars: ✭ 45 (-81.56%)
Mutual labels: bugbounty, automated, reconnaissance
Favfreak
Making Favicon.ico based Recon Great again !
Stars: ✭ 564 (+131.15%)
Mutual labels: reconnaissance, recon, bugbounty
Sub-Drill
A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
Stars: ✭ 70 (-71.31%)
Mutual labels: recon, bugbounty, reconnaissance
Url Tracker
Change monitoring app that checks the content of web pages in different periods.
Stars: ✭ 171 (-29.92%)
Mutual labels: reconnaissance, recon, bugbounty
apkizer
apkizer is a mass downloader for android applications for all available versions.
Stars: ✭ 40 (-83.61%)
Mutual labels: recon, bugbounty, reconnaissance
Recon My Way
This repository created for personal use and added tools from my latest blog post.
Stars: ✭ 271 (+11.07%)
Mutual labels: reconnaissance, recon, bugbounty
Rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+1309.43%)
Mutual labels: reconnaissance, recon, bugbounty
tugarecon
Pentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (-41.8%)
Mutual labels: recon, bugbounty, reconnaissance
Hosthunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (+75%)
Mutual labels: reconnaissance, recon, bugbounty
Bigbountyrecon
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
Stars: ✭ 541 (+121.72%)
Mutual labels: reconnaissance, recon, bugbounty
AutoRecon
CHECK RENGINE FOR A MORE INTERESTING AND ACTIVELY MAINTENED PROJECT
Features
- Enum subdomains, create permutation & wildcard removing with Amass
- Search subdomains on github with Github-Subdomains
- Find web services and screenshots with Aquatone
- Nuclei : Configurable targeted scanning based on templates
- Gau : Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl for any given domain.
- Hakrawler : Simple, fast web crawler
- ParamSpider : Mining parameters from dark corners of Web Archives
-
Gf : A wrapper around grep, to help you grep for things
- With somes GF profiles from Gf-Patterns and ParamSpider
- SubDomainizer : Designed to find hidden subdomains and secrets present is either webpage, Github, and external javascripts present in the given URL.
Installation
- Installation & Recon tested on Ubuntu 20.04
Run installer :
./install.sh
If wanted (recommended), configure Amass with the desired API keys by creating a config.ini file.
Create the file .tokens in /root/Tools/Github-Subdomains/ with one or more github token.
Usage
./recon.sh -d domain.tld -r -s -c /root/Tools/Amass/config.ini
Options :
-d | --domain (required) : Domain in domain.tld format
-r | --recon (optional) : Search subdomains for the specified domain
-s | --scan (optional) : Scan the specified domain
-c | --amassconfig (optional) : Provide Amass configuration files for better results
-rp | --resultspath (optional) : Defines the output folder
Domain monitoring
The advantage of using amass with the "-dir" option is that it also allows monitoring with a bash script. For example, you can create a cron task that executes the following content at regular intervals:
#!/bin/bash
DOMAIN=your-domain.tld
/root/AutoRecon.sh -d $DOMAIN -c /root/Tools/Amass/config.ini
MSG=$(amass track -d $DOMAIN -dir /root/Recon/$DOMAIN/Amass/ | grep 'Found:')
PAYLOAD="payload={\"text\": \"$MSG\"}"
HOOK=https://hooks.slack.com/services/XXXX/XXXX/XXXX
if [ ! -z "$var" ]
then
curl -X POST --data-urlencode "$PAYLOAD" "$HOOK"
fi
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].