v1.0.2

thewhiteh4t · Mar 20, 2020 · 8bb40c3 · 8bb40c3
1 parent 8f41199
commit 8bb40c3
Show file tree

Hide file tree

Showing 17 changed files with 27,556 additions and 279 deletions.
diff --git a/README.md b/README.md
@@ -1,25 +1,79 @@
-<p align="center"><img src="https://i.imgur.com/REmgjGp.png"></p>
-
-<h4 align="center">
-OSINT Tool for All-In-One Web Reconnaissance
-</h4>
+<p align="center"><img src="https://i.imgur.com/a77Edpi.png"></p>
 
 <p align="center">
 <img src="https://img.shields.io/badge/Python-3-brightgreen.svg?style=plastic">
 <img src="https://img.shields.io/badge/OSINT-red.svg?style=plastic">
 <img src="https://img.shields.io/badge/Web-red.svg?style=plastic">
 </p>
 
+<p align="center">
+  <a href="https://twitter.com/thewhiteh4t"><b>Twitter</b></a>
+  <span> - </span>
+  <a href="https://t.me/thewhiteh4t"><b>Telegram</b></a>
+  <span> - </span>
+  <a href="https://thewhiteh4t.github.io"><b>thewhiteh4t's Blog</b></a>
+</p>
+
 | Available                            | in                                   |
 |--------------------------------------|--------------------------------------|
 | ![](https://i.imgur.com/1wJVDV5.png) | ![](https://i.imgur.com/z36xL8c.png) |
 
 FinalRecon is a fast and simple python script for web reconnaissance. It follows a modular structure so in future new modules can be added with ease.
 
+## Featured
+
+### NullByte
+* https://null-byte.wonderhowto.com/how-to/conduct-recon-web-target-with-python-tools-0198114/
+* https://www.youtube.com/watch?v=F9lwzMPGIgo
+
+### Hakin9
+* https://hakin9.org/final-recon-osint-tool-for-all-in-one-web-reconnaissance/
+
 ## Features
 
 FinalRecon provides detailed information such as :
 
+* Header Information
+
+* Whois
+
+* SSL Certificate Information
+
+* Crawler
+
+* DNS Enumeration
+  * A, AAAA, ANY, CNAME, MX, NS, SOA, TXT Records
+  * DMARC Records
+
+* Subdomain Enumeration
+  * Data Sources
+    * BuffOver
+    * crt.sh
+    * ThreatCrowd
+    * AnubisDB
+    * ThreatMiner
+
+* Traceroute
+  * Protocols
+    * UDP
+    * TCP
+    * ICMP
+
+* Directory Searching
+
+* Port Scan
+  * Fast
+  * Top 1000 Ports
+  * Open Ports with Standard Services
+
+* Export
+  * Formats
+    * txt
+    * xml
+    * csv
+
+## Screenshots
+
 ### Header Information
 <p align="center"><img src="https://i.imgur.com/B7sblDP.png"></p>
 
@@ -33,7 +87,24 @@ FinalRecon provides detailed information such as :
 ### Crawler
 <p align="center"><img src="https://i.imgur.com/C8eQ8z3.png">
 
-#### More modules will be added in future
+### DNS Enumeration
+<p align="center"><img src="https://i.imgur.com/dUlnIv6.png"></p>
+<p align="center">HackTheBox OSINT Challenge</p>
+
+### Subdomain Enumeration
+<p align="center"><img src="https://i.imgur.com/G7Tm5k1.png"></p>
+
+### Traceroute
+
+<p align="center"><img src="https://i.imgur.com/v9NZjo2.png"></p>
+
+### Directory Searching
+
+<p align="center"><img src="https://i.imgur.com/V9mXO31.png"></p>
+
+### Port Scan
+
+<p align="center"><img src="https://i.imgur.com/mOpWydU.png"></p>
 
 ## Tested on
 
@@ -52,21 +123,40 @@ pip3 install -r requirements.txt
 
 ```bash
 python3 finalrecon.py -h
-usage: finalrecon.py [-h] [--headers] [--sslinfo] [--whois] [--crawl] [--full]
+
+usage: finalrecon.py [-h] [--headers] [--sslinfo] [--whois] [--crawl] [--dns] [--sub] [--trace] [--dir] [--ps]
+                     [--full] [-t T] [-T T] [-w W] [-r] [-s] [-d D] [-m M] [-p P] [-tt TT] [-o O]
                      url
 
-FinalRecon - OSINT Tool for All-In-One Web Recon | v1.0.0
+FinalRecon - OSINT Tool for All-In-One Web Recon | v1.0.2
 
 positional arguments:
   url         Target URL
 
 optional arguments:
   -h, --help  show this help message and exit
-  --headers   Get Header Information
-  --sslinfo   Get SSL Certificate Information
-  --whois     Get Whois Lookup
-  --crawl     Crawl Target Website
-  --full      Get Full Analysis, Test All Available Options
+  --headers   Header Information
+  --sslinfo   SSL Certificate Information
+  --whois     Whois Lookup
+  --crawl     Crawl Target
+  --dns       DNS Enumeration
+  --sub       Sub-Domain Enumeration
+  --trace     Traceroute
+  --dir       Directory Search
+  --ps        Fast Port Scan
+  --full      Full Recon
+
+Extra Options:
+  -t T        Number of Threads [ Default : 50 ]
+  -T T        Request Timeout [ Default : 10.0 ]
+  -w W        Path to Wordlist [ Default : wordlists/dirb_common.txt ]
+  -r          Allow Redirect [ Default : False ]
+  -s          Toggle SSL Verification [ Default : True ]
+  -d D        Custom DNS Servers [ Default : 1.1.1.1 ]
+  -m M        Traceroute Mode [ Default : UDP ] [ Available : TCP, ICMP ]
+  -p P        Port for Traceroute [ Default : 80 / 33434 ]
+  -tt TT      Traceroute Timeout [ Default : 1.0 ]
+  -o O        Export Output [ Default : txt ] [ Available : xml, csv ]
 ```
 
 ```bash

diff --git a/dumps/empty.txt b/dumps/empty.txt