reconFTW – Yet another new recon tool

According to its GitHub page, reconFTW is desdribed as: ReconFTW automates the entire process of reconnaissance for you. It outperforms the work of subdomain enumeration along with various vulnerability checks and obtaining maximum information about your target. ReconFTW uses a lot of techniques (passive, bruteforce, permutations, certificate transparency, source code scraping, analytics, DNS records…) for subdomain enumeration which helps you to get the maximum and the most interesting subdomains so that

Katana: a new crawling and spidering tool

A new web crawler and spidering tool from ProjectDiscovery.io has been released. Install katana requires Go 1.18 to install successfully. go install github.com/projectdiscovery/katana/cmd/katana@latest Usage Input Crawling Mode According to Katana’s documentation: Standard Mode Standard crawling modality uses the standard go HTTP library under the hood to handle HTTP requests/responses. This modality is much faster as it doesn’t have the browser overhead. Still, it analyzes HTTP responses body as is, without any javascript

Bat overview

Bat is a cat clone tool with many extra features: Syntax highlighting Git integration Show non-printable characters Automatic paging File concatenation Installation For a macOs sytem. (For other systems check the specific installation description in the documentation) ❯ brew install bat Usage Display a single file on the terminal ❯ bat file.txt Display multiple files at once ❯ bat *.txt Read from the stdin and detect the syntax automatically ❯

reNgine: A brief overview

ReNgine is a very complete recon tool that can be very helpful to centralize all your recon in one site. Its main website defines it as: «The only web application recon tool you will ever need!« Currently is capable of performing: Subdomain Discovery Vulnerability Detection IPs and Open Ports Identification Directory and files fuzzing Screenshot Gathering Endpoints Gathering OSINT Although reNgine can be installed in a local machine, it is

Script to update go version

Although Go installation it’s a pretty straight-forward process, it can be done even easier if a script is used to install and update your golang installation. We are going to use update-golang script. $ go version $ git clone https://github.com/udhos/update-golang.git $ sudo ./update-golang.sh $ go version To finish the setup, the shell PATH should be updated. The path ‘/usr/local/go/bin’ is added to PATH using ‘/etc/profile.d/golang_path.sh’. Only if needed, GOROOT is

Wordlists for your daily work

When we do pentesting and bug bounty the most important phase is always recon and one of the most important elements for your recon is the wordlist. It is said that «Your recon is as good as your wordlist is». In our Kali Linux, there are by default different good wordlists at /usr/share/wordlists: $ cd /usr/share/wordlists dirb dirbuster fasttrack.txt fern-wifi metasploit nmap.lst rockyou.txt wfuzz While dirb, dirbuster and wfuzz can

FinalRecon (web reconnaissance tool)

As it is described in its website: FinalRecon is an automatic web reconnaissance tool written in python. Goal of FinalRecon is to provide an overview of the target in a short amount of time while maintaining the accuracy of results. Instead of executing several tools one after another it can provide similar results keeping dependencies small and simple. https://github.com/cbk914/finalrecon Installation $ sudo apt install finalrecon Usage $ finalrecon.py <arguments> url

Ngrok: External connectivity for your PoCs

Ngrok is an application that helps you to give a way to access your local service from the Internet. It can be a useful tool to test your PoCs. This app has a free tier for your projects with non-commercial use. Installation and configuration https://ngrok.com/docs/getting-started Signup into Ngrok and download the app. It is a portable app, so you just have to download the file and run it. No dependencies

Oh my Zsh (Mac OS / Linux) – Install + Config

If Zsh shell is not previously installed: $ sudo apt install zsh Change the default shell: $ chsh -s /bin/zsh# usermod –shell /usr/bin/zsh <username> Note: This process will need to be done for every user in the system that wants to use this shell (root included) Install Oh My Zshhttps://ohmyz.sh/ $ sh -c «$(curl -fsSL https://raw.github.com/ohmyzsh/ohmyzsh/master/tools/install.sh)» PowerLevel10k ZSH theme https://github.com/romkatv/powerlevel10k git clone –depth=1 https://github.com/romkatv/powerlevel10k.git ${ZSH_CUSTOM:-$HOME/.oh-my-zsh/custom}/themes/powerlevel10k Add the powerlevel10k theme to

Nuclei Vulnerability Scanner – Install

Nuclei is a vulnerability scanner tool from ProjectDiscovery. Using a template system, Nuclei becomes an extensible and highly configurable application that can be very helpful in pentests or bug bounty processes. In this first post, I’ll show how to install Nuclei in a Kali Linux inside a MacBook Pro with the new M1 Pro CPU. Kali Linux is installed using a VMware Fusion for Apple Silicon beta version. More info can be