ReconSpider is the most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Addresses, Emails, Websites, Organizations and for finding information from several different sources.
ReconSpider can be used by Infosec Researchers, Penetration Testers, Bug Hunters, and Cyber Crime Investigators to find extension information about their target.
ReconSpider aggregates all tons of raw data, visualizes it on a CLI-based dashboard and facilitates alerting and monitoring the data.
Recon Spider also combines the capabilities of Wave,Photon and Recon Dog to do a comprehensive enumeration of an attack surface.
ReconSpider
= Recon
+ Spider
Recon = Reconnaissance
Reconnaissance is a mission to obtain information through various detection methods about the activities and resources of an enemy, potential enemy, or the geographical characteristics of a particular area.
Spider = Web Crawler
A web crawler, sometimes called a spider or spiderbot and often shortened to crawler, is an Internet bot that systematically browses the World Wide Web, typically for the purpose of web indexing (web spidering).
- Version (beta)
- Overview of the tool
- Mind Map (v1)
- License Information
- ReconSpider Banner
- Documentation
- Setting up the Environment (Linux Operating System)
- Setting up the Environment (Windows Operating System)
- Usage
- Contact
- Wiki & How-to Guide
- Updates
ReconSpider : 1.0.6
- Performs OSINT scan on a IP Addresses, Emails, Websites, Organizations and finds information from different sources.
- Correlates and collaborates the results, and shows them in a consolidated manner.
- Use specific script / launch automated OSINT for consolidated data.
- Currently only available as a Command Line Interface (CLI) application.
Check out our mind map to see the visual organization of the information and tools that are available.
http://bhavkaran.com/reconspider/mindmap.html
ReconSpider and its documents are covered under GPL-3.0 (General Public License v3.0)
__________ _________ __ ___
\______ \ ____ ____ ____ ____ / _____/_____ |__| __| _/___________
| _// __ \_/ ___\/ _ \ / \ \_____ \\____ \| |/ __ |/ __ \_ __ \
| | \ ___/\ \__( <_> ) | \ / \ |_> > / /_/ \ ___/| | \/
|____|_ /\___ >\___ >____/|___| / /_______ / __/|__\____ |\___ >__|
\/ \/ \/ \/ \/|__| \/ \/
developer: https://bhavkaran.com
ENTER 0 - 13 TO SELECT OPTIONS
1. IP Enumerate information from IP Address
2. DOMAIN Gather information about given domain
3. PHONENUMBER Gather information about phone number
4. DNS MAP Map DNS records associated with target
5. METADATA Extract all metadata of the given file
6. REVERSE IMAGE SEARCH Obtain domain name or IP address mapping
7. HONEYPOT Check if it's a honeypot or real
8. MAC ADDRESS LOOKUP Obtain information about a given MAC
9. IPHEATMAP Draw out heatmap of locations of IP
10. TORRENT Gather torrent download history of IP
11. USERNAME Extract Account info from social media
12. IP2PROXY Check whether IP uses any VPN / PROXY
13. MAIL BREACH Checks given domain has breached Mail
99. UPDATE Update ReconSpider to its latest version
0. EXIT Exit from ReconSpider to your terminal
Installing and using ReconSpider is very easy:
- Downloading or cloning ReconSpider github repository.
- Installing all dependencies.
Let's Begin !!
Step 1 - Cloning ReconSpider on your linux system.
In order to download ReconSpider simply clone the github repository. Below is the command which you can use in order to clone the ReconSpider repository.
git clone https://github.com/bhavsec/reconspider.git
Step 2 - Make sure python3 and python3-pip is installed on your system.
You can also perform a check by typing this command in your terminal.
sudo apt install python3 python3-pip
Step 3 - Installing all dependencies.
Once you clone the repository and install the dependencies, you will find the reconspider directory. Just go to that directory and install the application using these commands.
cd reconspider
sudo python3 setup.py install
Step 1 - Downloading ReconSpider on your windows system.
In order to download ReconSpider from github repository simply copy and paste this URL into your favourite browser.
https://github.com/bhavsec/reconspider/archive/master.zip
Step 2 - Unzipping the file
Once you have finished downloading, you will find a zipped file named datasploit-master.zip. Just right click on that zipped file and unzip it using any software, such as WinZip or WinRAR.
Step 2 - Installing all dependencies.
After unzipping, go to that directory using Command Prompt and type the following command.
python3 setup.py install
Step 3 - Database
IP2Proxy Database
https://lite.ip2location.com/database/px8-ip-proxytype-country-region-city-isp-domain-usagetype-asn-lastseen
Download the database, extract it, and move it to reconspider/plugins/ directory.
ReconSpider is very handy tool and easy to use. All you have to do is pass it options as parameters. In order to start ReconSpider just type:
python3 reconspider.py
1. IP
This option gathers all the information of given IP Address from public resources.
ReconSpider >> 1
IP >> 8.8.8.8
2. DOMAIN
This option gathers all the information of given URL Address and check for vulneribility.
Reconspider >> 2
HOST (URL / IP) >> vulnweb.com
PORT >> 443
3. PHONENUMBER
This option allows you to gather information of given phone number.
Reconspider >> 3
PHONE NUMBER (919485247632) >>
4. DNS MAP
This option allows you to map an organizations attack surface with a virtual DNS Map of the DNS records associated with the target organization.
ReconSpider >> 4
DNS MAP (URL) >> vulnweb.com
5. METADATA
This option allows you to extract all metadata of the file.
Reconspider >> 5
Metadata (PATH) >> /root/Downloads/images.jpeg
6. REVERSE IMAGE SEARCH
This option allows you to obtain information and similar image that are available in internet.
Reconspider >> 6
REVERSE IMAGE SEARCH (PATH) >> /root/Downloads/images.jpeg
Open Search Result in web broser? (Y/N) : y
7. HONEYPOT
This option allows you to identify honeypots! The probability that an IP is a honeypot is captured in a "Honeyscore" value that can range from 0 to 1
ReconSpider >> 7
HONEYPOT (IP) >> 1.1.1.1
8. MAC ADDRESS LOOKUP
This option allows you to identify a MAC address to find it's manufacturer, address, country, etc.
Reconspider >> 8
MAC ADDRESS LOOKUP (Eg:08:00:69:02:01:FC) >>
9. IPHEATMAP
This option provides you a heatmap of mutiple IPs or a single IP.
Reconspider >> 9
1) Trace single IP
2) Trace multiple IPs
OPTIONS >>
10. TORRENT
This option allows you to gather history of torrent download history based on IP.
Reconspider >> 10
IPADDRESS (Eg:192.168.1.1) >>
11. USERNAME
This option allows you to gather account information of the provided username from social media like Instagram, Twitter, Facebook.
Reconspider >> 11
1.Facebook
2.Twitter
3.Instagram
Username >>
12. IP2PROXY
This option allows you to identify whether an IP address uses any kind of VPN or Proxy to hide its identify.
Reconspider >> 12
IPADDRESS (Eg:192.168.1.1) >>
13. MAIL BREACH
This option allows you to identify all breached emails from a given domain.
Reconspider >> 13
DOMAIN (Eg:intercom.io) >>
99. UPDATE
This option allows you to check for updates. If a newer version is available, ReconSpider will download and merge the updates into the current directory without overwriting other files.
ReconSpider >> 99
Checking for updates..
0. EXIT
This option allows you to exit from the ReconSpider Framework.
ReconSpider >> 0
Bye, See ya again..
Do you want to have a conversation in private?
Twitter: @bhavsec
Facebook: fb.com/bhavsec
Instagram: instagram.com/bhavsec
LinkedIn: linkedin.com/in/bhavsec
Email: [email protected]
Website: bhavkaran.com
Please go through the ReconSpider Wiki Guide for a detailed explanation of each and every option and feature.
ReconSpider is under heavy development. Performance optimization & new feature updates are being rolled out regularly. Custom error handling is also not yet implemented. All focus is currently on completing required functionality.
If you would like to see features and issues that are being worked on, you can do that on the Development Progress project board.