-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathrecon.sh
115 lines (115 loc) · 6.14 KB
/
recon.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
#!/bin/bash
domain=$1
# input from command-line becomes company to test
company=$2
#run as bash enum2all.sh Domain.com Company
#timestamp
stamp=$(date +"%m_%d_%Y")
path=$(pwd)
#create rc file with workspace.timestamp and start enumerating hosts
touch $company-$domain$stamp.resource
echo "spool start $domain$stamp.log" >> $domain$stamp.resource
echo "Domain:" $domain
echo "Company:" $company
echo "workspaces create $domain$stamp"
echo "workspaces load $domain$stamp" >> $domain$stamp.resource
echo "workspaces create $domain$stamp" >> $domain$stamp.resource
echo "workspaces load $domain$stamp" >> $domain$stamp.resource
echo "modules load recon/domains-hosts/bing_domain_web" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-hosts/bing_domain_api" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-hosts/google_site_api" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-hostsetcraft" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-hosts/hackertarget" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-contacts/metacrawler" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-hosts/shodan_hostname" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-hosts/brute_hosts" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-hosts/certificate_transparency" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/hosts-hosts/resolve" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/hosts-hosts/reverse_resolve" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/hosts-hosts/bing_ip" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/hosts-hosts/ipinfodb" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/hosts-hosts/freegeoip" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/hosts-hosts/ssltools" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-contacts/pgp_search" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-contacts/whois_pocs" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/companies-contacts/bing_linkedin_cache" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-hosts/builtwith" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-hosts/mx_spf_ip" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-hosts/ssl_san" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-vulnerabilities/ghdb" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-vulnerabilities/punkspider" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-vulnerabilities/xssed" >> $domain$stamp.resource
echo "options set SOURCE $domain" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/companies-multi/github_miner" >> $domain$stamp.resource
echo "options set SOURCE $company" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/profiles-contacts/github_modules_users" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/profiles-contacts/github_modules" >> $domain$stamp.resource
echo "options set SOURCE $company" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/profiles-repositories/github_repos" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/repositories-profiles/github_commits" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/repositories-vulnerabilities/github_dorks" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/companies-multi/whois_miner" >> $domain$stamp.resource
echo "options set SOURCE $company" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load recon/domains-domains/brute_suffix" >> $domain$stamp.resource
echo "options set SOURCE $company" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load reporting/csv" >> $domain$stamp.resource
echo "options set FILENAME $path/$domain.csv" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "modules load reporting/html" >> $domain$stamp.resource
echo "options set CREATOR Sam" >> $domain$stamp.resource
echo "options set CUSTOMER $domain" >> $domain$stamp.resource
echo "options set FILENAME $path/$domain.html" >> $domain$stamp.resource
echo "run" >> $domain$stamp.resource
echo "exit" >> $domain$stamp.resource
cd $HOME
cd recon-ng
./recon-ng -r $path/$domain$stamp.resource