FinalRecon is a fast and simple python script for web reconnaissance. It follows a modular structure so in future new modules can be added with ease.
Features
FinalRecon provides detailed information such as :
- Header Information
- Whois
- SSL Certificate Information
Crawler
html
- CSS
- Javascripts
- Internal Links
- External Links
- Images
robots
sitemaps
Links inside Javascripts
Links from Wayback Machine from Last 1 Year
DNS Enumeration
- A, AAAA, ANY, CNAME, MX, NS, SOA, TXT Records
- DMARC Records
Subdomain Enumeration
Data Sources
- BuffOver
- crt.sh
- ThreatCrowd
- AnubisDB
- ThreatMiner
- Facebook Certificate Transparency API
- Auth Token is Required for this source, read Configuration below
Traceroute
Protocols
- UDP
- TCP
- ICMP
Directory Searching
- Support for File Extensions
- Directories from Wayback Machine from Last 1 Year
Port Scan
- Fast
- Top 1000 Ports
- Open Ports with Standard Services
Export
Formats
- txt
- xml
- csv
Installation
- git clone https://github.com/thewhiteh4t/FinalRecon.git
- cd FinalRecon
- pip3 install -r requirements.txt
Demo
Docker
- docker pull thewhiteh4t/finalrecon
- docker run -it --entrypoint /bin/sh thewhiteh4t/finalrecon