The script aims to help find vulnerabilities in web applications. The methodology resulting from RecoX can identify weaknesses in addition to the top ten of OWASP.
The script presents information against the destination system. Gathers information retrospectively into each subdomain and IP addr for an advanced attack.
The RecoX automates many operations and saves significant time required throughout a manual penetration test.
Installation and use
The deep scan includes many controls, such as subdomain takeover, A record, passive scan, active scan, CORS misconfiguration, zone transfer test and web content discovery.