GhostRecon - a Kali Linux toolkit.
Automated Reconnaissance.
GhostRecon provides an automation tool for each step of the recon phase:
- Gather initial information
- Determine the network range
- Identify active machines
- Discover open ports and access points
- Fingerprint the operating system
- Uncover services on ports
- Map the network
Installation :
Update Kali : sudo apt-get update && sudo apt-get upgrade
Python libraries : pip3 install whois
Download GhostRecon repo.
Usage :
Built for Kali Linux - utilises tools such as Arp-Scan, NMap and xprobe.
Open terminal.
Change to the GhostRecon directory and type : sudo python3 main.py
Menu breakdown :
- Advanced WHOIS lookup - lists general WHOIS lookup information + sub domains.
- List network devices - list the devices connected to your network.
- WHOAMI - hilarious take on WHOIS and lists your configurations and details.
- URL / IP port scanner - enter a URL or IP and scan for open ports.
- Promiscuous AP scan - enter monitor mode and scan for access points.
- Spoof / reset MAC address - generates and spoofs your mac address. 'Reset [port]' resets mac configurations.
- Scan host on remote IP - list the devices connected to remote IP.
- Scan IP for OS details - enumerate operating system details from IP.
- URL / IP geo-locater - discover geographical location of an IP address.
- Web server application scan - list services and apps running on a web server, very loud.
- Reset network services - for use after promiscuous mode.
Happy reconnaissance!