AutoRecon

Features

• Enum subdomains with Amass, Sublist3r, Crtsh & Certspotter
• Combination of results, check with MassDNS
• Check for TakeOver with Subjack & TkoSubs
• Find JS files & find endpoints with LinkFinder
• WAF detection with WafW00f
• Scan with Aquatone
• Check open ports with Masscan
• Creation of an archive and upload with unique link on Transfer.sh

Installation

• Installation tested on Debian 9 / Kali 2018.4
• Recon tested on Debian 9 / Kali 2018.4 & 2019.1 / Arch linux (Manjaro 18.x)

Requierement : Golang

git clone https://github.com/JoshuaMart/AutoRecon
cd AutoRecon

Edit the following variables on install.sh & create ToolsDir directories :

ToolsDIR="/root/Recon/Tools" #Directory where tools was installed
GoPath="/root/go" #Your Go Workspace

And the following variables on recon.sh :

ToolsDIR="/root/Recon/Tools" #Directory where tools was installed
ResultsPath="/root/Recon" #Directory where you want scans results
AquatonePorts="small" #Aquatone option, see his options
TransferSH="https://transfer.sh" #Change this if you have you own transfer.sh
subjackDebug="/root/go/src/github.com/haccer/subjack/fingerprints.json" #Subjack bug without this ...

Run installer :

./install.sh

Usage

./recon.sh -d domain.tld -a -u

Options :

-d | --domain  (required) : Launch passive scan (Passive Amass, Aquatone, Subjack, TkoSubs)
-a | --active  (optional) : Launch active scans (Active Amass, Sublist3r LinkFinder, Aquatone)
-m | --masscan (optional) : Launch masscan (Can be very long & very aggressive ...)
-u | --upload  (optional) : Upload archive on Transfer.sh

If your internet connection crash with Masscan options, change --rate options to 100 at line 102