Skip to content

7. FAQs

Jump to bottom
six2dez edited this page Oct 6, 2022 · 8 revisions

Installation

Installer script shows some tools not installed in red colour
  • When the installer script shows something like the below image, that means that particular tool wasn't installed due to some reasons.
  • In such a case, its recommended you manually install the tool, so that you don't face any issues further.
fix34
How do you update reconFTW and all its tools all at once ?
  • The install.sh is both installer and updater script.
  • When you run install.sh first it will check whether any newer version of reconftw is available and update itself automatically.
  • Later on it will update all the tools and the repositories.
./install.sh

Usage

The scan kills/blow ups up my home wifi
  • This generally occurs during the subdomain enumeration part(Bruteforce subdomain enumeration).
  • This is due to massdns which generates a huge amount of traffic by concurrently requesting the public resolvers.
  • To overcome this you can make changes in the reconftw.cfg config file.
  • Set the value between 2000-10000 as per your needs.
PUREDNS_PUBLIC_LIMIT=2000
The scan feels stuck at a particular step
  • A particular step/check can be disabled/skipped through the reconftw.cfg config file.
  • First stop the ongoing scan by long pressing ctrl+c.
  • Open the reconftw config with a text editor and set the value to the required function to false
    Eg:- Suppose you want to disable directory fuzzing since it's taking too long.
FUZZ=false
Google Dorking doesn't return results
  • When you perform some suspicious queries on google, it thinks that it's coming from some automated tool.
  • Thus, google will ask for CAPTCHA, to verify that you are a legit person querying.
  • Hence, if you have run Google Dorks 2-3 times the next time you won't get the results, as Google has blocked the answer in return and asking for CAPTCHA.

Features

How to setup/recieve notifications about the ongoing scan
  • To use notifications you must first enable it through the reconftw.cfg config file.
NOTIFICATION=true
  • ReconFTW uses notify tool in order to send updates about the ongoing scans.
  • So in order to set up notifications, you need to configure the notify config file $HOME/.config/notify/notify.conf first.

1)Configure Discord notifications

  • First, you need to make your own server and then create a webhook.
  • Now give a name and copy the webhook URL.

fix41

  • Now we have to configure the notify config file.
  • Rember to uncomment the lines before modifying the parameters.

fix42



2)Configure Telegram notifications

  • Open your telegram and search @BotFather

Copy-of-Copy-of-Untitled-2

  • Message him /start, this will give back a list of options.
  • Our concern is to make a new bot, so message him /newbot.
  • Now select the set a bot name and a unique bot_username.
  • Now we get assigned a unique address for our bot. ( Eg:- t.me/reconftw_bot ) and an api key.
  • The next step is to get the chat-id.
  • Visit this
https://api.telegram.org/bot<Your_Api_Key>/getupdates
  • Now message your bot anything by clicking on the link BotFather provided you (Eg:- t.me/reconftw_bot).
  • Now refresh the page and you will see a chat object.
  • There you will see the id parameter. Copy the chat-id.
  • Now let's go the notify config file located at $HOME/.config/notify/notify.conf
  • Now uncomment and fill the required parameters.
  • Done !!!

fix46

Support for larger files

  • Discord by default limits uploads from bots to 8MB.

  • If the size of your result set exceeds this size, the script will use transfer.sh to do the upload, and will send the link instead of the raw zip to all notify providers (including discord, and telegram if configured as such).

  • You can even use notify to POST this to a custom webhook/endpoint like https://pipedream.com/ for example, and have the file saved and unpacked in your preferred cloud drive if desired. 🤓

Clone this wiki locally