{"id":31179536,"url":"https://github.com/dotnetrussell/turborecon","last_synced_at":"2025-10-28T00:01:44.756Z","repository":{"id":310906125,"uuid":"1041702810","full_name":"DotNetRussell/TurboRecon","owner":"DotNetRussell","description":"Turbo Recon is a python script that automates the early stages of a pentest. It facilitates more consistent testing and is easy to extend","archived":false,"fork":false,"pushed_at":"2025-08-20T23:28:03.000Z","size":25,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-09-19T16:18:27.513Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/DotNetRussell.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-08-20T22:22:59.000Z","updated_at":"2025-09-15T20:31:03.000Z","dependencies_parsed_at":"2025-08-21T00:26:44.659Z","dependency_job_id":"c21f869f-ee0a-4065-b053-e46510e85548","html_url":"https://github.com/DotNetRussell/TurboRecon","commit_stats":null,"previous_names":["dotnetrussell/turborecon"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/DotNetRussell/TurboRecon","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/DotNetRussell%2FTurboRecon","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/DotNetRussell%2FTurboRecon/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/DotNetRussell%2FTurboRecon/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/DotNetRussell%2FTurboRecon/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/DotNetRussell","download_url":"https://codeload.github.com/DotNetRussell/TurboRecon/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/DotNetRussell%2FTurboRecon/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":281361348,"owners_count":26487881,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-27T02:00:05.855Z","response_time":61,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-09-19T15:54:56.442Z","updated_at":"2025-10-28T00:01:44.691Z","avatar_url":"https://github.com/DotNetRussell.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# TurboRecon\nTurbo Recon is a python script that automates the early stages of a pentest. It facilitates more consistent testing and is easy to extend\n\n## Usage\n### It slices, it dices, it automates your recon scanning \n```\npython3 turborecon.py                     \nusage: turborecon.py [-h] [--no-ping] [--username USERNAME] [--wordlist WORDLIST] [--threads THREADS] ip\nturbohacker.py: error: the following arguments are required: ip\n```\n\n### Sample output\n```\npython3 turborecon.py 10.10.11.82 --threads 50\nPinging target 10.10.11.82...\nPing successful. Target is up.\nRunning nmap scan on 10.10.11.82...\nRunning nmap SSH enumeration on 10.10.11.82:22...\nRunning hydra SSH brute-force on 10.10.11.82:22 with username 'admin', wordlist '/usr/share/wordlists/rockyou.txt', and 50 threads...\nRunning nikto on 10.10.11.82:8000...\nRunning dirb on 10.10.11.82:8000...\nRunning gobuster on 10.10.11.82:8000...\nRunning whatweb on 10.10.11.82:8000...\n\nScan Summary:\n+--------+-----------+----------+\n|   Port | Service   | Status   |\n+========+===========+==========+\n|     22 | ssh       | Scanned  |\n+--------+-----------+----------+\n|   8000 | http      | Scanned  |\n+--------+-----------+----------+\n\nDetailed scan results saved to pentest_report_10.10.11.82_20250820_181557.txt\n```\n\n### Sample Report\n```\nPentest Report for 10.10.11.82\nGenerated on: 20250820_181557\n\n\n========================================\nCommand: ping -c 4 10.10.11.82\n========================================\nPING 10.10.11.82 (10.10.11.82) 56(84) bytes of data.\n64 bytes from 10.10.11.82: icmp_seq=1 ttl=63 time=25.7 ms\n64 bytes from 10.10.11.82: icmp_seq=2 ttl=63 time=25.8 ms\n64 bytes from 10.10.11.82: icmp_seq=3 ttl=63 time=26.4 ms\n64 bytes from 10.10.11.82: icmp_seq=4 ttl=63 time=26.4 ms\n\n--- 10.10.11.82 ping statistics ---\n4 packets transmitted, 4 received, 0% packet loss, time 3140ms\nrtt min/avg/max/mdev = 25.737/26.094/26.447/0.334 ms\n\n\n========================================\nCommand: nmap -p- -sC -sV -oX nmap_scan.xml 10.10.11.82\n========================================\nStarting Nmap 7.95 ( https://nmap.org ) at 2025-08-20 18:16 EDT\nNmap scan report for 10.10.11.82\nHost is up (0.027s latency).\nNot shown: 65533 closed tcp ports (reset)\nPORT     STATE SERVICE VERSION\n22/tcp   open  ssh     OpenSSH 8.2p1 Ubuntu 4ubuntu0.13 (Ubuntu Linux; protocol 2.0)\n| ssh-hostkey: \n|   3072 a0:47:b4:0c:69:67:93:3a:f9:b4:5d:b3:2f:bc:9e:23 (RSA)\n|   256 7d:44:3f:f1:b1:e2:bb:3d:91:d5:da:58:0f:51:e5:ad (ECDSA)\n|_  256 f1:6b:1d:36:18:06:7a:05:3f:07:57:e1:ef:86:b4:85 (ED25519)\n8000/tcp open  http    Gunicorn 20.0.4\n|_http-title: Welcome to CodeTwo\n|_http-server-header: gunicorn/20.0.4\nService Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel\n\nService detection performed. Please report any incorrect results at https://nmap.org/submit/ .\nNmap done: 1 IP address (1 host up) scanned in 25.99 seconds\n\n\n========================================\nCommand: nmap --script ssh2-enum-algos,ssh-auth-methods -p 22 10.10.11.82\n========================================\nStarting Nmap 7.95 ( https://nmap.org ) at 2025-08-20 18:16 EDT\nNmap scan report for 10.10.11.82\nHost is up (0.026s latency).\n\nPORT   STATE SERVICE\n22/tcp open  ssh\n| ssh-auth-methods: \n|   Supported authentication methods: \n|     publickey\n|_    password\n| ssh2-enum-algos: \n|   kex_algorithms: (10)\n|       curve25519-sha256\n|       curve25519-sha256@libssh.org\n|       ecdh-sha2-nistp256\n|       ecdh-sha2-nistp384\n|       ecdh-sha2-nistp521\n|       diffie-hellman-group-exchange-sha256\n|       diffie-hellman-group16-sha512\n|       diffie-hellman-group18-sha512\n|       diffie-hellman-group14-sha256\n|       kex-strict-s-v00@openssh.com\n|   server_host_key_algorithms: (5)\n|       rsa-sha2-512\n|       rsa-sha2-256\n|       ssh-rsa\n|       ecdsa-sha2-nistp256\n|       ssh-ed25519\n|   encryption_algorithms: (6)\n|       chacha20-poly1305@openssh.com\n|       aes128-ctr\n|       aes192-ctr\n|       aes256-ctr\n|       aes128-gcm@openssh.com\n|       aes256-gcm@openssh.com\n|   mac_algorithms: (10)\n|       umac-64-etm@openssh.com\n|       umac-128-etm@openssh.com\n|       hmac-sha2-256-etm@openssh.com\n|       hmac-sha2-512-etm@openssh.com\n|       hmac-sha1-etm@openssh.com\n|       umac-64@openssh.com\n|       umac-128@openssh.com\n|       hmac-sha2-256\n|       hmac-sha2-512\n|       hmac-sha1\n|   compression_algorithms: (2)\n|       none\n|_      zlib@openssh.com\n\nNmap done: 1 IP address (1 host up) scanned in 0.54 seconds\n\n\n========================================\nCommand: hydra -l admin -P /usr/share/wordlists/rockyou.txt ssh://10.10.11.82:22 -t 50\n========================================\nHydra v9.5 (c) 2023 by van Hauser/THC \u0026 David Maciejak - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore laws and ethics anyway).\n\nHydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2025-08-20 18:16:28\n[DATA] max 50 tasks per 1 server, overall 50 tasks, 14344399 login tries (l:1/p:14344399), ~286888 tries per task\n[DATA] attacking ssh://10.10.11.82:22/\n[STATUS] 116.00 tries/min, 116 tries in 00:01h, 14344300 to do in 2060:58h, 33 active\n0 of 1 target completed, 0 valid password found\n[INFO] Writing restore file because 2 server scans could not be completed\nHydra (https://github.com/vanhauser-thc/thc-hydra) finished at 2025-08-20 18:19:14\n[WARNING] Many SSH configurations limit the number of parallel tasks, it is recommended to reduce the tasks: use -t 4\n[ERROR] all children were disabled due too many connection errors\n[ERROR] 1 target was disabled because of too many errors\n[ERROR] 1 targets did not complete\n\n\n========================================\nCommand: nikto -h http://10.10.11.82:8000\n========================================\n- Nikto v2.5.0\n---------------------------------------------------------------------------\n+ Target IP:          10.10.11.82\n+ Target Hostname:    10.10.11.82\n+ Target Port:        8000\n+ Start Time:         2025-08-20 18:19:15 (GMT-4)\n---------------------------------------------------------------------------\n+ Server: gunicorn/20.0.4\n+ /: The anti-clickjacking X-Frame-Options header is not present. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options\n+ /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/\n+ No CGI Directories found (use '-C all' to force check all possible dirs)\n+ OPTIONS: Allowed HTTP Methods: GET, OPTIONS, HEAD .\n+ /#wp-config.php#: #wp-config.php# file found. This file contains the credentials.\n+ 8074 requests: 0 error(s) and 4 item(s) reported on remote host\n+ End Time:           2025-08-20 18:26:50 (GMT-4) (455 seconds)\n---------------------------------------------------------------------------\n+ 1 host(s) tested\n\n\n========================================\nCommand: dirb http://10.10.11.82:8000 -S -o dirb_output.txt\n========================================\n\n-----------------\nDIRB v2.22    \nBy The Dark Raver\n-----------------\n\nOUTPUT_FILE: dirb_output.txt\nSTART_TIME: Wed Aug 20 18:26:50 2025\nURL_BASE: http://10.10.11.82:8000/\nWORDLIST_FILES: /usr/share/dirb/wordlists/common.txt\nOPTION: Silent Mode\n\n-----------------\n\nGENERATED WORDS: 4612\n\n---- Scanning URL: http://10.10.11.82:8000/ ----\n+ http://10.10.11.82:8000/dashboard (CODE:302|SIZE:199)\n+ http://10.10.11.82:8000/download (CODE:200|SIZE:10696)\n+ http://10.10.11.82:8000/login (CODE:200|SIZE:667)\n+ http://10.10.11.82:8000/logout (CODE:302|SIZE:189)\n+ http://10.10.11.82:8000/register (CODE:200|SIZE:651)\n\n-----------------\nEND_TIME: Wed Aug 20 18:31:00 2025\nDOWNLOADED: 4612 - FOUND: 5\n\n\n========================================\nCommand: gobuster dir -u http://10.10.11.82:8000 -w /usr/share/wordlists/dirb/common.txt -o gobuster_output.txt\n========================================\n===============================================================\nGobuster v3.6\nby OJ Reeves (@TheColonial) \u0026 Christian Mehlmauer (@firefart)\n===============================================================\n[+] Url:                     http://10.10.11.82:8000\n[+] Method:                  GET\n[+] Threads:                 10\n[+] Wordlist:                /usr/share/wordlists/dirb/common.txt\n[+] Negative Status codes:   404\n[+] User Agent:              gobuster/3.6\n[+] Timeout:                 10s\n===============================================================\nStarting gobuster in directory enumeration mode\n===============================================================\n\n/dashboard            (Status: 302) [Size: 199] [--\u003e /login]\n\n/download             (Status: 200) [Size: 10696]\n\n/login                (Status: 200) [Size: 667]\n\n/logout               (Status: 302) [Size: 189] [--\u003e /]\n\n/register             (Status: 200) [Size: 651]\n\n===============================================================\nFinished\n===============================================================\n\n\n========================================\nCommand: whatweb http://10.10.11.82:8000\n========================================\nhttp://10.10.11.82:8000 [200 OK] Country[RESERVED][ZZ], HTML5, HTTPServer[gunicorn/20.0.4], IP[10.10.11.82], Script, Title[Welcome to CodeTwo]\n\nScan Summary Table:\n  Port  Service    Status\n    22  ssh        Scanned\n  8000  http       Scanned\nDetailed scan results saved to pentest_report_10.10.11.82_20250820_181557.txt\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdotnetrussell%2Fturborecon","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdotnetrussell%2Fturborecon","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdotnetrussell%2Fturborecon/lists"}