GithubHelp home page GithubHelp logo

thesinghsec / auto-recon-script Goto Github PK

View Code? Open in Web Editor NEW
0.0 1.0 0.0 1014 KB

An automated reconnaissance script that assists in gathering information and conducting reconnaissance on target domains. The script is designed to streamline the reconnaissance process by automating various tasks, including WHOIS lookup, Nmap scanning, directory enumeration, email harvesting, and more.

License: MIT License

Shell 100.00%

auto-recon-script's Introduction

Recon Automation Script

This Bash script automates various reconnaissance tasks for a target domain. It performs WHOIS lookup, NMAP scanning, subdomain enumeration, host availability check, information gathering, email reconnaissance, directory enumeration, and takes screenshots of live subdomains.

Usage

    $ ./recon.sh <target_domain>

Replace <target_domain> with the domain you want to perform reconnaissance on. For example:

    $ ./recon.sh example.com

Prerequisites

Make sure you have the following tools installed:

whois
nmap
subfinder
assetfinder
photon
amass
httprobe
theHarvester
h8mail
dirbuster
gowitness

Installation

Clone this repository:

    $ git clone https://github.com/singhx-hub/Auto-Recon-Script.git
    $ cd Auto-Recon-Script

Make the script executable:

    $ chmod +x recon.sh

Install the required dependencies mentioned in the Prerequisites section.

Directory Structure

The script creates the following directory structure to organize the results:

  • <target_domain>/
    • whois_info/
      • whois.txt
    • subdomains/
      • subdomains.txt
      • alive.txt
    • screenshots/
    • nmap_result/
      • nmap.txt
    • directory_enum/
      • dirb.txt
    • harvester/
      • data.txt
      • extracted_emails.txt
    • dirbuster/

Results

The script generates the following results:

WHOIS information: The WHOIS lookup result is saved in the whois_info/whois.txt file.

NMAP scan: The NMAP scan result is saved in the nmap_result/nmap.txt file.

Subdomain enumeration: The script uses multiple tools (subfinder, assetfinder, photon, amass) and saves the results in subdomains/subdomains.txt.

Host availability: The script checks for available hosts by probing the subdomains and saves the responsive URLs in subdomains/alive.txt.

Information gathering: The script uses theHarvester to gather information related to the target domain and saves the output in harvester/data.txt.

Email reconnaissance: The script extracts email addresses from the harvested data and saves them in harvester/extracted_emails.txt. It then uses h8mail to perform additional email reconnaissance and appends the result to harvester/data.txt.

Directory enumeration: The script uses dirbuster to perform directory enumeration and saves the result in dirbuster/dirb.txt.

Screenshots: The script takes screenshots of the live subdomains using gowitness and saves them in the screenshots/ directory.

Note

Make sure you have the necessary permissions to run the script and create directories/files. The script assumes that the required tools are already installed and available in the system's PATH.

Disclaimer: Use this script responsibly and only on targets that you have permission to assess. Be mindful of legal and ethical considerations. The author takes no responsibility for any misuse or damage caused by this script.

auto-recon-script's People

Contributors

thesinghsec avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.