The script aims to help find vulnerabilities in applications Web. The methodology derived from RecoX can detect weaknesses in addition to the OWASP top ten.
The script presents information against the destination system. Gathers information retrospectively into each subdomain and IP addr for an advanced attack.
Το RecoX αυτοματοποιεί πολλές λειτουργίες και εξοικονομεί σημαντικό χρόνο που απαιτείται καθ 'όλη τη duration μιας χειροκίνητης penetration test essays.
Installation and use
git clone https://github.com/samhaxr/recox chmod + x recox.sh ./recox.sh
mv recox.sh / usr / local / bin / recox
Deep scan includes many checks, such as subdomain takeover, A record, passive scan, active scan, CORS misconfiguration, zone transfer test and discover web content.
Video guide