Reconnaissance Swiss Army Knife
Clone or download
Latest commit 077b30e Nov 16, 2018
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
core Disable colors in mac Oct 13, 2018
plugins Further correction Nov 15, 2018
.gitignore Added gitignore Feb 28, 2018
.travis.yml Recon Dog v2.0 Oct 13, 2018
LICENSE Recon Dog v2.0 Oct 13, 2018
README.md fixed link to demo video Oct 24, 2018
dog Recon Dog v2.0 Oct 13, 2018
requirements.txt Recon Dog v2.0 Oct 13, 2018

README.md


Photon
ReconDog

Reconnaissance Swiss Army Knife

Main Features

  • Wizard + CLA interface
  • Can extracts targets from STDIN (piped input) and act upon them
  • All the information is extracted with APIs, no direct contact is made to the target

Utilities

  • Censys: Uses censys.io to gather massive amount of information about an IP address.
  • NS Lookup: Does name server lookup
  • Port Scan: Scan most common TCP ports
  • Detect CMS: Can detect 400+ content management systems
  • Whois lookup: Performs a whois lookup
  • Detect honeypot: Uses shodan.io to check if target is a honeypot
  • Find subdomains: Uses findsubdomains.com to find subdomains
  • Reverse IP lookup: Does a reverse IP lookup to find domains associated with an IP address
  • Detect technologies: Uses wappalyzer.com to detect 1000+ technologies
  • All: Runs all utilities against the target

Demo

demo

Compatibility

Recon Dog will run on anything that has a python interpreter installed. However, it has been tested on the following configurations:

Operating Systems: Windows, Linux, Mac
Python Versions: Python2.7, Python 3.6

Installation

Recon Dog requires no manual configuration and can be simply run as a normal python script.
However, a debian package can be downloaded from here if you want to install it.

Usage

Wizard Interface

Wizard interface is the most straightforward way you can use Recon Dog in. Just run the program, select what you want to do and enter the target, it's that simple.

CLA Interface

Recon Dog also has a Command Line Argument inteface. Here's how you can find subdomains:

python dog -t marvel.com -c 7

There's more to it! Do you have a program that can enumerate subdomains and you want to scan ports of all the subdomains it finds? Don't worry, Recon Dog is designed for handling with such cases. You can simply do this:

subdomainfinder -t example.com | python dog --domains -c 3

If you just want to print the targets, don't use the -c option.
Also, it doesn't matter what kind of output the other program generates, Recon Dog uses regular expressions to find targets which makes it easy to integrate will literally every tool. There are two switchs available:

--domains    extract domains from STDIN
--ips        extract ip addresses from STDIN

Contribution & License

You can contribute in following ways:

  • Report bugs
  • Develop plugins
  • Give suggestions to make it better
  • Fix issues & submit a pull request

Do you want to have a conversation in private? Hit me up on my twitter, inbox is open :)
Recon Dog is licensed under Apache 2.0 License.