Skip to content

003random/003Recon

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

86 Commits

payloads

payloads

 
 

tools

tools

 
 

README.md

README.md

 
 

install.sh

install.sh

 
 

recon.sh

recon.sh

 
 

Repository files navigation

📌 Description

This repository contains some of my scripts that i created to automate some recon processes.
It performs the following things;

  1. Get subdomains of a domain
  2. Filter out only online domains
  3. Scan the domains for CRLF
  4. Check for a CORS misconfigurations
  5. Test for open redirects
  6. Grab sensitive headers
  7. Get sensitive info from error pages
  8. Check for subdomain takeovers
  9. Extract javascript files
  10. Feed the javascript files into 'relative-url-extractor'
  11. Screenshot all domains
  12. Check if sites run wordpress
  13. Start a wpscan on the wordpress sites
  14. Do a nmap service scan

More tools in comming soon / in progress 😉

All output will get saved in a folder named by the domain, in the output folder.
In this folder it will create files with the discovered content.

Install:

git clone https://github.com/003random/003Recon.git;  
cd 003Recon;  
./install.sh;  #Or if you have some tools already installed, edit the paths in recon.sh and comment those tools out here.

And then call it with:

./recon.sh example.com

Also, you might need to install some python modules like 'requests'.

👌 Created by 003random - @003random - 003random.com

About

Some tools to automate recon - 003random

poc-server.com/

Resources

Readme
Activity

Stars

295 stars

Watchers

10 watching

Forks

73 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 5

Languages