Reconnoitre
Reconnoitre copied to clipboard
codingo
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
I did an install on my kali machine but i have an error when running the script: /usr/share/nmap/Reconnoitre/Reconnoitre/reconnoitre.py:32: SyntaxWarning: "is" with a literal. Did you mean "=="? if util is...
The code for Reconnoitre is currently structured into independent methods/files but lacks classes for each file. Recommendation is to create classes for each base file within the project (for example...
Errors when running reconnoitre -t targets-live.txt -o reconnoitre-out --services --hostnames --dns --virtualhosts -w /usr/share/wordlists/rockyou.txt.gz While the scan does run, it produces errors... NSOCK ERROR [21182.2080s] mksock_bind_addr(): Bind to 0.0.0.0:918 failed...
Currently for each machine returned Reconnoitre will start a new thread for the remote hosts. This means that if 255 machines are available, 255 instances of NMap will fire in...
Scantype
Added custom scans. Please let me know what you think of the implementation. I wasn't sure where the best place to put the user_scan should go (or if it should...
Along with the change #74 the user should be able to specify additional, modified scans that they can launch at command line. So, for example, if: ``` --scantype "codingo-hackthebox" ```...
Gobuster v3.0.1 now has mode options called "dns", "dir", "vhost". This will need to be reflected in the exported findings file that is generated for the automatic gobuster commands. https://github.com/codingo/Reconnoitre/blob/758247afc3a325cbf8224927fa095fbb0065fa6b/Reconnoitre/lib/config.json#L34-L35...
SNMP scanning is currently rather unimplemented and only scans the public tree. Adding further common trees (admin/private, or even loading a json file of trees) would be beneficial to enumeration....
A useful enhancement would be to add an argument that will run nmap scans through proxychains
