Awesome
<h1 align="center"> <br> <a href="https://github.com/s0md3v/ReconDog"><img src="https://image.ibb.co/mxO9rz/recondog.png" alt="Photon"></a> <br> ReconDog <br> </h1> <h4 align="center">Reconnaissance Swiss Army Knife</h4> <p align="center"> <a href="https://github.com/s0md3v/ReconDog/releases"> <img src="https://img.shields.io/github/release/s0md3v/ReconDog.svg"> </a> <a href="https://travis-ci.com/s0md3v/ReconDog"> <img src="https://img.shields.io/travis/com/s0md3v/ReconDog.svg"> </a> <a href="https://github.com/s0md3v/ReconDog/issues?q=is%3Aissue+is%3Aclosed"> <img src="https://img.shields.io/github/issues-closed-raw/s0md3v/ReconDog.svg"> </a> </p>Main Features
- Wizard + CLA interface
- Can extracts targets from STDIN (piped input) and act upon them
- All the information is extracted with APIs, no direct contact is made to the target
Utilities
- Censys: Uses censys.io to gather massive amount of information about an IP address.
- NS Lookup: Does name server lookup
- Port Scan: Scan most common TCP ports
- Detect CMS: Can detect 400+ content management systems
- Whois lookup: Performs a whois lookup
- Detect honeypot: Uses shodan.io to check if target is a honeypot
- Find subdomains: Uses findsubdomains.com to find subdomains
- Reverse IP lookup: Does a reverse IP lookup to find domains associated with an IP address
- Detect technologies: Uses wappalyzer.com to detect 1000+ technologies
- All: Runs all utilities against the target
Demo
<a href="https://youtu.be/CHkIMcSzzCY"><img alt="demo" src="https://image.ibb.co/i11A69/Screenshot-2018-10-13-15-41-11.png"></a>
Compatibility
Recon Dog will run on anything that has a python interpreter installed. However, it has been tested on the following configurations:
Operating Systems: Windows, Linux, Mac
Python Versions: Python2.7, Python 3.6
Installation
Recon Dog requires no manual configuration and can be simply run as a normal python script.
However, a debian package can be downloaded from here if you want to install it.
Usage
Wizard Interface
Wizard interface is the most straightforward way you can use Recon Dog in. Just run the program, select what you want to do and enter the target, it's that simple.
CLA Interface
Recon Dog also has a Command Line Argument inteface. Here's how you can find subdomains:
python dog -t marvel.com -c 7
There's more to it! Do you have a program that can enumerate subdomains and you want to scan ports of all the subdomains it finds? Don't worry, Recon Dog is designed for handling with such cases. You can simply do this:
subdomainfinder -t example.com | python dog --domains -c 3
If you just want to print the targets, don't use the -c option.
Also, it doesn't matter what kind of output the other program generates, Recon Dog uses regular expressions to find targets which makes it easy to integrate will literally every tool.
There are two switchs available:
--domains extract domains from STDIN
--ips extract ip addresses from STDIN
Contribution & License
You can contribute in following ways:
- Report bugs
- Develop plugins
- Give suggestions to make it better
- Fix issues & submit a pull request
Do you want to have a conversation in private? Hit me up on my twitter, inbox is open :)
Recon Dog is licensed under Apache 2.0 License.