capt-meelo / lazyrecon Goto Github PK
View Code? Open in Web Editor NEWAn automated approach to performing recon for bug bounty hunting and penetration testing.
License: MIT License
An automated approach to performing recon for bug bounty hunting and penetration testing.
License: MIT License
Can you add the option to input a list of domains to do recon.
Error message: Line 69: syntax error near unexpected token `newline'
Found this while trying to install.
~/LazyRecon$ ./LazyRecon.sh target.com
██╗ █████╗ ███████╗██╗ ██╗██████╗ ███████╗ ██████╗ ██████╗ ███╗ ██╗
██║ ██╔══██╗╚══███╔╝╚██╗ ██╔╝██╔══██╗██╔════╝██╔════╝██╔═══██╗████╗ ██║
██║ ███████║ ███╔╝ ╚████╔╝ ██████╔╝█████╗ ██║ ██║ ██║██╔██╗ ██║
██║ ██╔══██║ ███╔╝ ╚██╔╝ ██╔══██╗██╔══╝ ██║ ██║ ██║██║╚██╗██║
███████╗██║ ██║███████╗ ██║ ██║ ██║███████╗╚██████╗╚██████╔╝██║ ╚████║
╚══════╝╚═╝ ╚═╝╚══════╝ ╚═╝ ╚═╝ ╚═╝╚══════╝ ╚═════╝ ╚═════╝ ╚═╝ ╚═══
v1.3 by @CaptMeelo
--==[ Setting things up ]==--
[+] Creating results directories...
[] /home/baba/LazyRecon/results/target.com/subdomain
[] /home/baba/LazyRecon/results/target.com/cors
[] /home/baba/LazyRecon/results/target.com/ip
[] /home/baba/LazyRecon/results/target.com/portscan
[] /home/baba/LazyRecon/results/target.com/screenshot
[] /home/baba/LazyRecon/results/target.com/directory
--==[ Enumerating subdomains ]==--
[+] Running Amass...
./LazyRecon.sh: line 68: /home/baba/go/bin/amass: No such file or directory
[+] Running subfinder...
./LazyRecon.sh: line 71: /home/baba/go/bin/subfinder: No such file or directory
[+] Combining subdomains...
cat: '/home/baba/LazyRecon/results/target.com/subdomain/.txt': No such file or directory
[] Check the list of subdomains at /home/baba/LazyRecon/results/target.com/subdomain/final-subdomains.txt
--==[ Checking for subdomain takeovers ]==--
[+] Running subjack...
./LazyRecon.sh: line 79: /home/baba/go/bin/subjack: No such file or directory
cat: /home/baba/LazyRecon/results/target.com/subdomain/final-takeover.tmp: No such file or directory
rm: cannot remove '/home/baba/LazyRecon/results/target.com/subdomain/final-takeover.tmp': No such file or directory
[*] Check subjack's result at /home/baba/LazyRecon/results/target.com/subdomain/final-takeover.txt
--==[ Checking CORS configuration ]==--
[+] Running CORScanner...
Traceback (most recent call last):
File "/home/baba/LazyRecon/tools/CORScanner/cors_scan.py", line 8, in
from common.corscheck import CORSCheck
File "/home/baba/LazyRecon/tools/CORScanner/common/corscheck.py", line 12, in
import urllib3
File "/usr/local/lib/python2.7/dist-packages/gevent/builtins.py", line 96, in import
result = _import(args, **kwargs)
ImportError: No module named urllib3
[] Check the result at /home/baba/LazyRecon/results/target.com/cors/final-cors.txt
--==[ Resolving IP addresses ]==--
[+] Running massdns...
[*] Check the list of IP addresses at /home/baba/LazyRecon/results/target.com/ip/final-ips.txt
--==[ Port-scanning targets ]==--
[+] Running masscan...
FAIL: target IP address list empty
[hint] try something like "--range 10.0.0.0/8"
[hint] try something like "--range 192.168.0.100-192.168.0.200"
warning: failed to load external entity "/home/baba/LazyRecon/results/target.com/portscan/masscan.xml"
unable to parse /home/baba/LazyRecon/results/target.com/portscan/masscan.xml
cat: /home/baba/LazyRecon/results/target.com/portscan/masscan.xml: No such file or directory
[*] Masscan Done! View the HTML report at /home/baba/LazyRecon/results/target.com/portscan/final-masscan.html
[+] Running nmap...
Starting Nmap 7.80 ( https://nmap.org ) at 2020-09-22 01:46 IST
Error #486: Your port specifications are illegal. Example of proper form: "-100,200-1024,T:3000-4000,U:60000-"
QUITTING!
compilation error: file /home/baba/LazyRecon/results/target.com/portscan/nmap.xml line 1 element nmaprun
xsltParseStylesheetProcess : document is not a stylesheet
[*] Nmap Done! View the HTML report at /home/baba/LazyRecon/results/target.com/portscan/final-nmap.html
--==[ Taking screenshots ]==--
[+] Running aquatone...
aquatone v1.7.0 started at 2020-09-22T01:46:44+05:30
No targets found in input.
[*] Check the result at /home/baba/LazyRecon/results/target.com/screenshot/aquatone/aquatone_report.html
--==[ Bruteforcing directories ]==--
[+] Running dirsearch...
[]Creating output directory...
cat: /home/baba/LazyRecon/results/target.com/screenshot/aquatone/aquatone_urls.txt: No such file or directory
[] Check the results at /home/baba/LazyRecon/results/target.com/directory/dirsearch/
--==[ DONE ]==--
baba@kali:~/LazyRecon$
./install.sh: line 69: syntax error near unexpected token newline' ./install.sh: line 69:
~/go/bin/subfinder --set-config VirustotalAPIKey='
Cant get past this.
First run on your script.
`--==[ Enumerating subdomains ]==--
[+] Running Amass...
flag provided but not defined: -d
Running Source: Ask
Running Source: Archive.is
Running Source: Baidu
Running Source: Bing
Running Source: Censys
Running Source: CertDB
Running Source: CertificateTransparency
Running Source: Certspotter
Running Source: Commoncrawl
Running Source: Crt.sh
Running Source: Dnsdb
Running Source: DNSDumpster
Running Source: DNSTable
Running Source: Dogpile
Running Source: Exalead
Running Source: Findsubdomains
Running Source: Googleter
Running Source: Hackertarget
Running Source: Ipv4Info
Running Source: PassiveTotal
Running Source: PTRArchive
Running Source: Securitytrails
Running Source: Shodan
Running Source: Sitedossier
Running Source: Threatcrowd
Running Source: ThreatMiner
Running Source: Virustotal
Running Source: WaybackArchive
Running Source: Yahoo
Running enumeration on example.com
dnsdb: Unexpected return status 404
waybackarchive: parse http://web.archive.org/cdx/search/cdx?url=*.example.com/*&output=json&fl=original&collapse=urlkey&page=: net/url: invalid control character in URL
archiveis: Get http://archive.is/*.example.com: dial tcp 46.45.185.30:80: connect: connection timed out
Hello,
Riddler is end of life soon. Registration can no longer be made.
Do you have any plans to supplement this feature with something else?
Thank you for your hard work!
Great tool..
But i keep getting error on port scanning. Says the html is generated but nothing is.
Got this while install.sh
/usr/include/x86_64-linux-gnu/bits/stdio2.h:64:10: note: ‘__builtin___snprintf_chk’ output between 3 and 27 bytes into a destination of size 16
return __builtin___snprintf_chk (__s, __n, __USE_FORTIFY_LEVEL - 1,
^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
__bos (__s), __fmt, __va_arg_pack ());
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'nmap.o' failed
make: *** [nmap.o] Error 4
make: *** Waiting for unfinished jobs....
checking for a BSD-compatible install... g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'nmap_dns.o' failed
make: *** [nmap_dns.o] Error 4
g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'scan_engine.o' failed
make: *** [scan_engine.o] Error 4
g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'FingerPrintResults.o' failed
make: *** [FingerPrintResults.o] Error 4
/usr/bin/install -c
checking whether build environment is sane... g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'nmap_error.o' failed
make: *** [nmap_error.o] Error 4
g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'nmap_tty.o' failed
make: *** [nmap_tty.o] Error 4
g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'idle_scan.o' failed
make: *** [idle_scan.o] Error 4
yes
g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'MACLookup.o' failed
make: *** [MACLookup.o] Error 4
g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'FPModel.o' failed
make: *** [FPModel.o] Error 4
g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'nmap_ftp.o' failed
make: *** [nmap_ftp.o] Error 4
checking for a thread-safe mkdir -p... /bin/mkdir -p
checking for gawk... gawk
checking whether make sets $(MAKE)... g++: internal compiler error: Killed (program cc1plus)
Please submit a full bug report,
with preprocessed source if appropriate.
See <file:///usr/share/doc/gcc-7/README.Bugs> for instructions.
Makefile:120: recipe for target 'NmapOps.o' failed
make: *** [NmapOps.o] Error 4
How to avoid brute forcing? It times too much time.
Hi.
Before using the "massdns" tool, why use subjack?
root@kali:~/tools/webapplication/LazyRecon# bash install.sh
install.sh: line 69: syntax error near unexpected token newline' install.sh: line 69:
~/go/bin/subfinder --set-config VirustotalAPIKey='
needed to remove <> from the main script
root@kali:~/LazyRecon# ./LazyRecon.sh twilio.com
██╗ █████╗ ███████╗██╗ ██╗██████╗ ███████╗ ██████╗ ██████╗ ███╗ ██╗
██║ ██╔══██╗╚══███╔╝╚██╗ ██╔╝██╔══██╗██╔════╝██╔════╝██╔═══██╗████╗ ██║
██║ ███████║ ███╔╝ ╚████╔╝ ██████╔╝█████╗ ██║ ██║ ██║██╔██╗ ██║
██║ ██╔══██║ ███╔╝ ╚██╔╝ ██╔══██╗██╔══╝ ██║ ██║ ██║██║╚██╗██║
███████╗██║ ██║███████╗ ██║ ██║ ██║███████╗╚██████╗╚██████╔╝██║ ╚████║
╚══════╝╚═╝ ╚═╝╚══════╝ ╚═╝ ╚═╝ ╚═╝╚══════╝ ╚═════╝ ╚═════╝ ╚═╝ ╚═══
v1.3 by @CaptMeelo
--==[ Setting things up ]==--
[+] Creating results directories...
[] /root/LazyRecon/results/twilio.com/subdomain
[] /root/LazyRecon/results/twilio.com/cors
[] /root/LazyRecon/results/twilio.com/ip
[] /root/LazyRecon/results/twilio.com/portscan
[] /root/LazyRecon/results/twilio.com/screenshot
[] /root/LazyRecon/results/twilio.com/directory
--==[ Enumerating subdomains ]==--
[+] Running Amass...
flag provided but not defined: -d
[+] Running subfinder...
flag provided but not defined: -b
Usage of /root/go/bin/subfinder:
-all
Use all sources (slow) for enumeration
-cd
Upload results to the Chaos API (api-key required)
-config string
Configuration file for API Keys, etc (default "/root/.config/subfinder/config.yaml")
-d string
Domain to find subdomains for
-dL string
File containing list of domains to enumerate
-exclude-sources string
List of sources to exclude from enumeration
-json
Write output in JSON lines Format
-ls
List all available sources
-max-time int
Minutes to wait for enumeration results (default 10)
-nC
Don't Use colors in output
-nW
Remove Wildcard & Dead Subdomains from output
-o string
File to write output to (optional)
-oD string
Directory to write enumeration results to (optional)
-oI
Write output in Host,IP format
-oJ
Write output in JSON lines Format
-r string
Comma-separated list of resolvers to use
-rL string
Text file containing list of resolvers to use
-recursive
Use only recursive subdomain enumeration sources
-silent
Show only subdomains in output
-sources string
Comma separated list of sources to use
-t int
Number of concurrent goroutines for resolving (default 10)
-timeout int
Seconds to wait before timing out (default 30)
-v Show Verbose output
-version
Show version of subfinder
[+] Combining subdomains...
cat: '/root/LazyRecon/results/twilio.com/subdomain/.txt': No such file or directory
[] Check the list of subdomains at /root/LazyRecon/results/twilio.com/subdomain/final-subdomains.txt
--==[ Checking for subdomain takeovers ]==--
[+] Running subjack...
cat: /root/LazyRecon/results/twilio.com/subdomain/final-takeover.tmp: No such file or directory
rm: cannot remove '/root/LazyRecon/results/twilio.com/subdomain/final-takeover.tmp': No such file or directory
[*] Check subjack's result at /root/LazyRecon/results/twilio.com/subdomain/final-takeover.txt
--==[ Checking CORS configuration ]==--
[+] Running CORScanner...
Traceback (most recent call last):
File "/root/LazyRecon/tools/CORScanner/cors_scan.py", line 8, in
from common.corscheck import CORSCheck
File "/root/LazyRecon/tools/CORScanner/common/corscheck.py", line 1, in
import gevent.monkey
ImportError: No module named gevent.monkey
[*] Check the result at /root/LazyRecon/results/twilio.com/cors/final-cors.txt
--==[ Resolving IP addresses ]==--
[+] Running massdns...
[*] Check the list of IP addresses at /root/LazyRecon/results/twilio.com/ip/final-ips.txt
--==[ Port-scanning targets ]==--
[+] Running masscan...
FAIL: target IP address list empty
[hint] try something like "--range 10.0.0.0/8"
[hint] try something like "--range 192.168.0.100-192.168.0.200"
warning: failed to load external entity "/root/LazyRecon/results/twilio.com/portscan/masscan.xml"
unable to parse /root/LazyRecon/results/twilio.com/portscan/masscan.xml
cat: /root/LazyRecon/results/twilio.com/portscan/masscan.xml: No such file or directory
[*] Masscan Done! View the HTML report at /root/LazyRecon/results/twilio.com/portscan/final-masscan.html
[+] Running nmap...
Host discovery disabled (-Pn). All addresses will be marked 'up' and scan times will be slower.
Starting Nmap 7.91 ( https://nmap.org ) at 2020-10-19 09:58 EDT
Error #486: Your port specifications are illegal. Example of proper form: "-100,200-1024,T:3000-4000,U:60000-"
QUITTING!
compilation error: file /root/LazyRecon/results/twilio.com/portscan/nmap.xml line 1 element nmaprun
xsltParseStylesheetProcess : document is not a stylesheet
[*] Nmap Done! View the HTML report at /root/LazyRecon/results/twilio.com/portscan/final-nmap.html
--==[ Taking screenshots ]==--
[+] Running aquatone...
aquatone v1.7.0 started at 2020-10-19T09:58:22-04:00
No targets found in input.
[*] Check the result at /root/LazyRecon/results/twilio.com/screenshot/aquatone/aquatone_report.html
--==[ Bruteforcing directories ]==--
[+] Running dirsearch...
[]Creating output directory...
cat: /root/LazyRecon/results/twilio.com/screenshot/aquatone/aquatone_urls.txt: No such file or directory
[] Check the results at /root/LazyRecon/results/twilio.com/directory/dirsearch/
--==[ DONE ]==--
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.