Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

https://github.com/kh4sh3i/smartrecon

smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter
https://github.com/kh4sh3i/smartrecon

bug-bounty-automation bugbounty dnsgen eyewitness feroxbuster hackerone hacking httprobe httpx massdns penetration-testing pentest pentest-scripts recon reconnaissance redteam shuffledns sqlmap subfinder tools

Last synced: about 1 month ago
JSON representation

smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter

Host: GitHub
URL: https://github.com/kh4sh3i/smartrecon
Owner: kh4sh3i
License: cc0-1.0
Created: 2022-06-10T19:31:07.000Z (about 2 years ago)
Default Branch: main
Last Pushed: 2023-12-03T22:02:51.000Z (7 months ago)
Last Synced: 2024-02-28T02:26:28.940Z (4 months ago)
Topics: bug-bounty-automation, bugbounty, dnsgen, eyewitness, feroxbuster, hackerone, hacking, httprobe, httpx, massdns, penetration-testing, pentest, pentest-scripts, recon, reconnaissance, redteam, shuffledns, sqlmap, subfinder, tools
Language: Shell
Homepage:
Size: 174 KB
Stars: 113
Watchers: 6
Forks: 33
Open Issues: 1
Metadata Files:
- Readme: README.md
- License: LICENSE

Lists

awesome-stars - kh4sh3i/smartrecon - smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter (tools)

README

# smartrecon
smartrecon is a script written in Bash, it is intended to automate some tedious tasks of reconnaissance and information gathering

```

## Main Features
* Create a dated folder with recon notes
* Grab subdomains using:
* subfinder, assetfinder, SonarSearch, cert.sh
* dnsgen , shuffledns , massdns
* Find any CNAME records pointing to unused cloud services like aws
* Probe for live hosts with shuffledns and fresh resolver
* Web servers hunting [httpx] over top 50 ports
* Grab a screenshots of responsive hosts with gowitness
* Extract wayback import data
* Perform naabu on specific ports
* Perform dirsearch for all subdomains
* find exposure data with nuclei scanner
* find XSS, SSRF, cache poisoning vulnerability
* send notifiaction wthi notify tools to discord,telegram,...
* Generate a HTML report with output from the tools above

## Installation & Requirements
```
git clone https://github.com/kh4sh3i/smartrecon.git
cd smartrecon
chmod +x install.sh
./install.sh
```

## Tools
* SonarSearch
* subfinder
* assetfinder
* dnsgen
* Fresh Resolvers
* shuffledns
* Massdns
* goWitness
* Waybackurls
* httpx
* gf
* interestingEXT
* feroxbuster
* naabu
* sqlmap-dev
* Unfurl
* nuclei
* dalfox
* ParamSpider
* qsreplace
* notify
* Seclists collection
* CorsMe
* ppmap

## Vulnerability
this is not only recon tools ! we automate find bug for your :D
today we can find below bug :
* XSS
* SSRF
* data exposure
* Broken authentication
* cache poisoning
* subdomain takeover
* Cors
* prototype pollution

### Tips
for send notification you should config ($HOME/.config/notify/provider-config.yaml) with discord webhook ulr.

## System Requirements
* Recommended to run on vps with 1VCPU and 2GB ram.

## Contributing
If you want to contribute to a project and make it better, your help is very welcome.

## product Roadmap
* add open redirect scanner
* add sql injection scanner
* increase performance
* fix some bugs

### Thanks
* [nahamsec - Ben Sadeghipour](https://github.com/nahamsec)
* [Tom Hudson - Tomonomnom](https://github.com/tomnomnom)
* [Jason Haddix](https://github.com/jhaddix)
* [ProjectDiscovery](https://github.com/projectdiscovery)
* [Orange Cyberdefense](https://github.com/sensepost)
* [HAHWUL](https://github.com/hahwul)
* [Devansh Batham](https://github.com/devanshbatham)
* [Daniel Miessler](https://github.com/danielmiessler)