reconftw: Simple and easy to use Recon script

reconftw is an open source program, written in golang, that helps us collect important about our goals.

Specifications

  • Tools checker
  • Google Dorks (based on deggogle_hunter)
  • Subdomain enumeration (passive, resolution, bruteforce and permutations)
  • Sub TKO (subjack and )
  • Web Prober (httpx)
  • Web screenshot (aquatone)
  • template (nuclei)
  • Port Scanner (new)
  • Url extraction (waybackurls, gau, hakrawler, github-endpoints)
  • Pattern Search (gf and gf-patterns)
  • Param discovery (paramspider and arjun)
  • (Gxss and dalfox)
  • Open redirect
  • SSRF checks (from m4ll0k / Bug-Bounty-Toolz / SSRF.py)
  • Github Check (git-hound)
  • Favicon Real IP (fav-up)
  • JS Checks (LinkFinder, SecretFinder, from JSFScan)
  • (ffff)
  • Cors (Corsy)
  • Check (testssl)
  • Interlace integration
  • Custom output folder (default under Recon / target.com /)
  • Run standalone steps (subdomains, subtko, web, gdorks...)
  • Polished installer compatible with most distros
  • Verbose mode
  • Update tools

Installation and Use

git clone https://github.com/six2dez/reconftw
cd reconftw chmod + x *.sh ./install.sh ./reconftw.sh -d target.com -a

Mindmap / Workflow

Examples

Full scan:

./reconftw.sh -d target.com -a

Subdomains scan:

./reconftw.sh -d target.com -s

Web scan:

./reconftw.sh -d target.com -l targets.txt -w

Dorks:

./reconftw.sh -d target.com -g

You can download the program from here.

 

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).