recon

reNgine: A brief overview

ReNgine is a very complete recon tool that can be very helpful to centralize all your recon in one site. Its main website defines it as: «The only web application recon tool you will ever need!« Currently is capable of performing: Subdomain Discovery Vulnerability Detection IPs and Open Ports Identification Directory and files fuzzing Screenshot Gathering Endpoints Gathering OSINT Although reNgine can be installed in a local machine, it is

Wordlists for your daily work

When we do pentesting and bug bounty the most important phase is always recon and one of the most important elements for your recon is the wordlist. It is said that «Your recon is as good as your wordlist is». In our Kali Linux, there are by default different good wordlists at /usr/share/wordlists: $ cd /usr/share/wordlists dirb dirbuster fasttrack.txt fern-wifi metasploit nmap.lst rockyou.txt wfuzz While dirb, dirbuster and wfuzz can

FinalRecon (web reconnaissance tool)

As it is described in its website: FinalRecon is an automatic web reconnaissance tool written in python. Goal of FinalRecon is to provide an overview of the target in a short amount of time while maintaining the accuracy of results. Instead of executing several tools one after another it can provide similar results keeping dependencies small and simple. https://github.com/cbk914/finalrecon Installation $ sudo apt install finalrecon Usage $ finalrecon.py <arguments> url