thenetrecon is a fastest tool to detect Cross Site scripting (XSS), SQL Injection, and automatically check urls for any sensetive information. and it's also used for numerate subdomain and network scanning.
-
Find XSS
-
Find SQL Injection
-
Check URL for important Information.
-
Enumirating Subdomains from 4 sources
- CertsPotter
- SSL Certificates
- HackerTarget
- ThreatCrowd
-
Records:
- TXT Records
- CCA Records
- SOA Records
- MX Records
- NS Records
- AAAA Records
- A Records
-
Advance Error Handling
git clone https://github.com/thenurhabib/thenetrecon.git
cd thenetrecon
python -m pip install -r requirements.txt
python3 thenetrecon.py --help
OPTIONS:
-h, --help show this help message and exit
-d DOMAIN, --domain DOMAIN
[required] Domain name to enumerate it's subdomains
-o , --output Save results in txt file.
-i, --ignore Ignore domains pointed to private IPs
-f , --file A file contains new line delimited subdomains.
-s, --save Save subdomains image map
-b, --bruteforce Enable the bruteforce scan
-t , --threads Number of threads. [Default 200]
--enum [ENUM ...] <optional> Perform enumerations and network mapping
--full Full scan, NAMES FILE first_names_full.txt will be used to brute
Name : Md. Nur habib
Medium : thenurhabib.medium.com
Twitter : https://twitter.com/thenurhab1b
HackerRank : https://www.hackerrank.com/thenurhabib