Home

Awesome

<h1 align="center"> <br> <a href="https://ibb.co/kG6XBMQ"><img src="https://i.ibb.co/QJjMQXr/magicrecon.png" alt="magicrecon" style="width:100%"></a> <br> MagicRecon: Fast, simple and effective <br> </h1> <p align="center"> <a href="https://github.com/robotshell/magicRecon/releases"> <img src="https://img.shields.io/github/v/release/robotshell/magicrecon?include_prereleases"> </a> <a href="https://www.gnu.org/licenses/gpl-3.0.en.html"> <img src="https://img.shields.io/github/license/robotshell/magicrecon"> </a> <a href="https://github.com/robotshell/magicRecon/issues?q=is%3Aissue+is%3Aclosed"> <img src="https://img.shields.io/github/issues-closed/robotshell/magicrecon"> </a> <a href="https://github.com/robotshell/magicRecon/commits/master"> <img src="https://img.shields.io/github/last-commit/robotshell/magicrecon"> </a> <a href="https://github.com/robotshell/magicRecon/commits/master"> <img src="https://img.shields.io/github/languages/code-size/robotshell/magicrecon"> </a> <a href=""> <img src="https://img.shields.io/twitter/follow/robotshelld?style=social"> </a> </p>

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

With Magic Recon you can perform passive and active reconnaissance, vulnerability analysis, subdomain scan and many more!


Main features :boom:


Installation :hammer:

$ git clone https://github.com/robotshell/magicRecon
$ cd magicRecon
$ chmod +x install.sh
$ ./install.sh

Configuration :wrench:

To configure MagicRecon tool you must open the configuration.cfg file and change variables defined by user data.

It is also important to correctly configure tools such as Subfinder and Notify to guarantee the correct functioning of magicRecon.


Usage :eyes:

TARGET OPTIONS

ParameterDescription
-dTarget domain
-wWildcard domain
-lTarget list

MODE OPTIONS

ParameterDescription
-a, --allAll mode - Full scan with full target recognition and vulnerability scanning
-p, --passivePassive reconnaissance (Footprinting) - Performs only passive recon with multiple tools
-x, --activeActive reconnaissance (Fingerprinting) - Performs only active recon with multiple tools
-r, --reconReconnaissance - Perform active and passive reconnaissance
-v, --vulnerabilitiesVulnerabilities - Check multiple vulnerabilities in the domain/list domains
-m, --massiveMassive recon - Massive vulnerability analysis with repetitions every X seconds

EXTRA OPTIONS

ParameterDescription
-n, --notifyNotify - This option is used to receive notifications via Discord, Telegram or Slack
-h, --helpHelp - Show help
./magicrecon.sh -h                 
 __  __             _      ____                      
|  \/  | __ _  __ _(_) ___|  _ \ ___  ___ ___  _ __  
| |\/| |/ _` |/ _` | |/ __| |_) / _ \/ __/ _ \| '_ \ 
| |  | | (_| | (_| | | (__|  _ <  __/ (_| (_) | | | |
|_|  |_|\__,_|\__, |_|\___|_| \_\___|\___\___/|_| |_|
              |___/                                  
MagicRecon v.3.0 - Open Source Project | Author: Robotshell | Twitter: @robotshelld


USAGE
./magicrecon.sh [-d domain.com] [-w domain.com] [-l listdomains.txt]
                      [-a] [-p] [-x] [-r] [-v] [-m] [-n] [-h] 

TARGET OPTIONS
   -d domain.com     Target domain
   -w domain.com     Wildcard domain
   -l list.txt       Target list
 
MODE OPTIONS
   -a, --all         All mode - Full scan with full target recognition and vulnerability scanning
   -p, --passive     Passive reconnaissance (Footprinting) - Performs only passive recon with multiple tools
   -x, --active      Active reconnaissance (Fingerprinting) - Performs only active recon with multiple tools
   -r, --recon       Reconnaissance - Perform active and passive reconnaissance
   -v, --vulnerabilities         Vulnerabilities - Check multiple vulnerabilities in the domain/list domains
   -m, --massive     Massive recon - Massive vulnerability analysis with repetitions every X seconds
 
EXTRA OPTIONS
   -n, --notify      Notify - This option is used to receive notifications via Discord, Telegram or Slack
   -h, --help                Help - Show this help


Example Usage :speak_no_evil:

All:

./magicrecon.sh -d domain.com -a

Passive reconnaissance to a list of domains:

./magicrecon.sh -l domainlist.txt -p

Active reconnaissance to a domain:

./magicrecon.sh -d domain.com -x

Full reconnaissance:

./magicrecon.sh -d domain.com -r

Full reconnaissance and vulnerabilities scanning:

./magicrecon.sh -d domain.com -r -v

Full reconnaissance and vulnerabilities scanning to a wildcard:

./magicrecon.sh -w domain.com 

Massive reconnaissance and vulnerabilities scanning:

./magicrecon.sh -w domain.com -m 

Sample video: passive reconnaissance :movie_camera:

Example image


To do :mage_man:


Contribution & License :family:

You can contribute in following ways:

MagicRecon is licensed under GPL-3.0 License


Special thanks


Disclaimer

This tool is intended for educational and research purposes only. The author and contributors are not responsible for any misuse of this tool. Users are advised to use this tool responsibly and only on systems for which they have explicit permission. Unauthorized access to systems, networks, or data is illegal and unethical. Always obtain proper authorization before conducting any kind of activities that could impact other users or systems.