Reconky - A Great Content Discovery Bash Script For Bug Bounty Hunters Which Automate Lot Of Task And Organized It

#353
Topic created · 1 Posts · 2 Views

  • Reconky is a script written in bash to automate the task of recon and information gathering.This Bash Script allows you to collect some information that will help you identify what to do next and where to look for the required target.
    Usage
    ./reconky.sh <domain.com>
    Main-Features

    • It will Gathers Subdomains with assetfinder and Sublist3r
    • Duplex check for subdomains using amass
    • Enumerates subdomains on a target domain through dictionary attack using knockpy
    • searchs for alive domains using Httprobe
    • Investigates for feasible subdomain takeover
    • Scans for open ports using nmap
    • Pulls and Assembls all possible parameters found in wayback_url data
    • Pulls and compilis json/js/php/aspx/ files from wayback output
    • Runs eyewitness against all the compiled(alive) domains
      Installation & Requirements
    • Download the install script from https://github.com/ShivamRai2003/Reconky-Automated_Bash_Script/blob/main/reconky.sh
      DEMO

      Authors and Thanks
      This script makes use of tools developped by the following people
    • Cyber Mentor
    • Tom Hudson - Tomonomnom
    • OWASP
    • Ahmed Aboul-Ela - Aboul3la
    • Gianni Amato
    • FortyNorth Security
    • Gordon Lyon
      Note : this tool tested on the [kali linux](https://stechclub.net/search?term=Kali%20Linux "kali linux") 2021.2 live image. If install.sh does not run kindly install all the tools manually described in that.So that directory problem will not occur and make sure all the tools can be run globally from any directory for that use symbolic link.
      Happy Hunting
      Note : Run with Caution. Pull Request and New Ideas Is Welcome.
      Download Reconky-Automated_Bash_Script
Log in to reply