GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → xerohackcom → webrecon

xerohackcom / webrecon

Licence: MIT license
Automated Web Recon Shell Scripts

Programming Languages

shell
77523 projects

Labels

securitytoolspenetration-testingpentestingreconbash-scriptreconnaissancepenetration-testing-tools

Projects that are alternatives of or similar to webrecon

Reconky-Automated Bash Script
Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
Stars: ✭ 167 (+247.92%)
Mutual labels:  penetration-testing, recon, bash-script, reconnaissance
XposedOrNot
XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.
Stars: ✭ 120 (+150%)
Mutual labels:  recon, reconnaissance, penetration-testing-tools
Scilla
🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration
Stars: ✭ 116 (+141.67%)
Mutual labels:  penetration-testing, recon, reconnaissance
Recsech
Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .
Stars: ✭ 173 (+260.42%)
Mutual labels:  penetration-testing, recon, reconnaissance
3klcon
Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.
Stars: ✭ 189 (+293.75%)
Mutual labels:  penetration-testing, recon, reconnaissance
Reconcat
A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.
Stars: ✭ 66 (+37.5%)
Mutual labels:  penetration-testing, recon, reconnaissance
Garud
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
Stars: ✭ 183 (+281.25%)
Mutual labels:  penetration-testing, bash-script, reconnaissance
Awesome Bbht
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Stars: ✭ 190 (+295.83%)
Mutual labels:  penetration-testing, recon, reconnaissance
Rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+7064.58%)
Mutual labels:  penetration-testing, recon, reconnaissance
Whatweb
Next generation web scanner
Stars: ✭ 3,503 (+7197.92%)
Mutual labels:  penetration-testing, recon, penetration-testing-tools
AttackSurfaceManagement
Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty
Stars: ✭ 45 (-6.25%)
Mutual labels:  penetration-testing, reconnaissance, penetration-testing-tools
Discover
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
Stars: ✭ 2,548 (+5208.33%)
Mutual labels:  penetration-testing, recon, reconnaissance
Hosthunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (+789.58%)
Mutual labels:  penetration-testing, recon, reconnaissance
tugarecon
Pentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+195.83%)
Mutual labels:  penetration-testing, recon, reconnaissance
Intrigue Core
Discover Your Attack Surface!
Stars: ✭ 1,013 (+2010.42%)
Mutual labels:  penetration-testing, reconnaissance
apkizer
apkizer is a mass downloader for android applications for all available versions.
Stars: ✭ 40 (-16.67%)
Mutual labels:  recon, reconnaissance
Eyes
👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️
Stars: ✭ 38 (-20.83%)
Mutual labels:  penetration-testing, reconnaissance
Keye
Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.
Stars: ✭ 101 (+110.42%)
Mutual labels:  penetration-testing, reconnaissance
Oscp Prep
my oscp prep collection
Stars: ✭ 105 (+118.75%)
Mutual labels:  penetration-testing, recon
vaf
Vaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+512.5%)
Mutual labels:  penetration-testing, recon
View All Similar Projects ➔


quick-pentest-scripts bhavesh kaul xerohack
webrecon

Some useful shell scripts to automate web recon

Scripts

  • autonuce - just automate nuclei against list of subs
  • urlfiles - grep files from allurls
  • quredir - get open-redirect endpoints from all urls

Quick Setup

Run the following command in terminal

git clone --depth=1 https://github.com/xerohackcom/webrecon.git && mv webrecon XHW && rm -rf webrecon && cd XHW && rm -rf github-assets && ll

Copy scripts to your recon folder

  • Copy the scripts to your recon directory. You can use 'cp' command to copy these scripts to your recon folder.

  • You reqire the basics of settings up the tools these scripts automate. Copy the tool name & google. Goto their github repos and set them up propoerly. These scripts automate usage. Sit down and relax. Better to run on cloud for heavy tests / full scope recons.

Usage!

Filenames in bold don't work if the name is changed. Pls change the scripts to accomodate your names

assetfinder + httpx + https-only + autonuce.sh

assetfinder xyz.com | httpx --silent | grep -i "https://" | anew subs && bash autonuce.sh

assetfinder + httpx + https-only + gauplus + urlfiles.sh + quredir.sh (Heavy)

assetfinder xyz.com | httpx --silent | grep -i "https://" | anew subs && cat subs | gauplus -b ttf,woff,svg,png,jpeg,jpg,css,bmp,tiff,woff2,ico,icon,PNG,JPG,BMP,CSS,gif,GIF | grep -i "https://" | anew allurls && bash urlfiles.sh && bash quredir.sh

assetfinder + httpx + https-only + gauplus + urlfiles.sh + + quredir.sh + autonuce.sh (Very-Heavy - All In One)

assetfinder xyz.com | httpx --silent | grep -i "https://" | anew subs && cat subs | gauplus -b ttf,woff,svg,png,jpeg,jpg,css,bmp,tiff,woff2,ico,icon,PNG,JPG,BMP,CSS,gif,GIF | grep -i "https://" | anew allurls && bash urlfiles.sh && bash quredir.sh && bash autonuce.sh

Happy Haxing :)

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].