All Projects → SilverPoision → Rock On

SilverPoision / Rock On

Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.

Programming Languages

shell
77523 projects

Projects that are alternatives of or similar to Rock On

Oneforall
OneForAll是一款功能强大的子域收集工具
Stars: ✭ 4,202 (+1567.46%)
Mutual labels:  recon, subdomain-scanner
tugarecon
Pentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (-43.65%)
Mutual labels:  recon, subdomain-scanner
Censys Subdomain Finder
⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
Stars: ✭ 402 (+59.52%)
Mutual labels:  recon, subdomain-scanner
Gorecon
Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal
Stars: ✭ 208 (-17.46%)
Mutual labels:  recon, subdomain-scanner
Scilla
🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration
Stars: ✭ 116 (-53.97%)
Mutual labels:  recon, subdomain-scanner
Url Tracker
Change monitoring app that checks the content of web pages in different periods.
Stars: ✭ 171 (-32.14%)
Mutual labels:  recon
Discover
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
Stars: ✭ 2,548 (+911.11%)
Mutual labels:  recon
Osint Tools
👀 Some of my favorite OSINT tools.
Stars: ✭ 155 (-38.49%)
Mutual labels:  recon
Findomain
The complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.
Stars: ✭ 2,186 (+767.46%)
Mutual labels:  subdomain-scanner
Rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+1264.68%)
Mutual labels:  recon
Phonia
Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.
Stars: ✭ 221 (-12.3%)
Mutual labels:  recon
Getjs
A tool to fastly get all javascript sources/files
Stars: ✭ 190 (-24.6%)
Mutual labels:  recon
Recsech
Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .
Stars: ✭ 173 (-31.35%)
Mutual labels:  recon
Iky
OSINT Project
Stars: ✭ 203 (-19.44%)
Mutual labels:  recon
Bbrecon
Python library and CLI for the Bug Bounty Recon API
Stars: ✭ 169 (-32.94%)
Mutual labels:  recon
Sitedorks
Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.
Stars: ✭ 221 (-12.3%)
Mutual labels:  recon
Siem
SIEM Tactics, Techiques, and Procedures
Stars: ✭ 157 (-37.7%)
Mutual labels:  recon
3klcon
Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.
Stars: ✭ 189 (-25%)
Mutual labels:  recon
Whoishere.py
WIFI Client Detection - Identify people by assigning a name to a device performing a wireless probe request.
Stars: ✭ 182 (-27.78%)
Mutual labels:  recon
Intrec Pack
Intelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (-29.76%)
Mutual labels:  recon

Rock-ON (A One-Shoot Killer)

Rock-ON Logo

Rock-On is a all in one recon tool that will help your Recon process give a boost. It is mainley aimed to automate the whole process of recon and save the time that is being wasted in doing all this stuffs manually. A thorough blog will be up in sometime. Stay tuned for the Stable version with a UI.

Features

  1. Sub Domain Scraping
  2. Finding A.S.N -> Netblocks -> IP's
  3. Resolving
  4. Finding Ports
  5. Finding VHost
  6. Finding Directories
  7. Finding Sub Takeovers
  8. Asset tracker with live monitoring
  9. Push Notifications to Slack
  10. Finding JS link then relative links in them and some sensitive files
  11. Active and passive crawling

Recommendation

Machine Configuration - Debian- 9.4, 4 GB RAM on DigitalOcean and its will be good to run this tool on a new and fresh VPS.

For Censys:

Set the API and SECRET KEY in the sub.sh unless you want to set it again and again.

For removing:

1. Delete the lines 13-18
2. Then set you API and SECRET KEY on line 47 & 48 like this: export CENSYS_API_ID=your_key_here

For getting notification on Slack:

Change the webhook address to your one in sub.sh, ASN.sh and Sublert.py-> config.py to get notification while you do your other works.

For changing:

1. Replace the Webhook address at line 113 in sub.sh and 15 in ASN.sh
2. Replace the Webhook address in Tools/sublert/config.py

AND

Follow @yassineaboukir guide to configure the slack for sublert and also for creating a webhook address for sub.sh and ASN.sh here: https://medium.com/@yassineaboukir/automated-monitoring-of-subdomains-for-fun-and-profit-release-of-sublert-634cfc5d7708

Tools Added

Thanks to all the aurthors who have written these scripts and making a huge contribution to the great community. A big shout-out for @ehsahil for his blog on recon that helped me a lot while making this tool and taking examples for the repository.

  1. Sublist3r

  2. Knock

  3. Subfinder

  4. Censys

  5. Amass

  6. CT Logs

  7. CTFR

  8. Wayback

  9. San Domains

  10. AltDns

  11. NMAP

  12. Masscan

  13. MassDNS

  14. Sublert

  15. Aquatone

  16. Vhost

  17. Rapid7 FDNS DB

  18. AWS-CLI

  19. Dirsearch

  20. More to be added...

Requirements

Go-Languange

Install by Following methods:

wget https://dl.google.com/go/go1.12.5.linux-amd64.tar.gz
tar -C /usr/local -xzf go1.12.5.linux-amd64.tar.gz
rm -f go1.12.5.linux-amd64.tar.gz
nano ~/.profile

Add this lines

export PATH=$PATH:/usr/local/go/bin
export GOROOT=/usr/local/go

Installation

Note: For a new Fresh VPS run this commands first:

sudo apt-get upgrade && sudo apt-get update && sudo apt-get install git
git clone https://github.com/SilverPoision/Rock-ON.git
cd Rock-ON
chmod +x rockon.sh
./rockon.sh
1

Also don't forget to configure your AWS credentials by running

aws configure

Usage

./rockon.sh

Enter your choice and then the required Information.

Screenshot

Rock-ON SC Rock-ON SC

Note: Run the below command while running the 4th option for the first time.

gem install colorize

Give Rock-On some Love

If this tool was useful to you during your recon stages - I would love to know. Any suggestions or ideas for this tool are appreciated - Just DM me on Facebook or Twitter

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].