Automated recon tools

• FinalRecon: A Python-based reconnaissance tool offering a range of modules for different tasks like SSL certificate checking, Whois information gathering, header analysis, and crawling. Its modular structure enables easy customisation for specific needs.

  • ./finalrecon.py --headers --whois --url http://inlanefreight.com

  • lsw2512@htb[/htb]$ git clone https://github.com/thewhiteh4t/FinalRecon.git
    lsw2512@htb[/htb]$ cd FinalRecon
    lsw2512@htb[/htb]$ pip3 install -r requirements.txt
    lsw2512@htb[/htb]$ chmod +x ./finalrecon.py
    lsw2512@htb[/htb]$ ./finalrecon.py --help

• Recon-ng: A powerful framework written in Python that offers a modular structure with various modules for different reconnaissance tasks. It can perform DNS enumeration, subdomain discovery, port scanning, web crawling, and even exploit known vulnerabilities.

• theHarvester: Specifically designed for gathering email addresses, subdomains, hosts, employee names, open ports, and banners from different public sources like search engines, PGP key servers, and the SHODAN database. It is a command-line tool written in Python.

• SpiderFoot: An open-source intelligence automation tool that integrates with various data sources to collect information about a target, including IP addresses, domain names, email addresses, and social media profiles. It can perform DNS lookups, web crawling, port scanning, and more.

• OSINT Framework: A collection of various tools and resources for open-source intelligence gathering. It covers a wide range of information sources, including social media, search engines, public records, and more.