thenurhabib / r3con

Multi-functional Web Recon & Vulnerability Scanner Tool

recon reconnaissance xss xss-vulnerability xss-scanner subdomain subdomain-enumeration subdomain-takeover open-redirect-injection sqlinjection sqli bash vulnerability-scanners vulnerability-scanner

R3CON

Multifunctional Web Recon & Vulnerability Scanner Tool

r3con is a Multifunctional Web Recon & Vulnerability Scanner Tool and incredibly fast crawler that can find multiple vulnerabilitys and gather information.

Check for vulnerabilities

Reflected XSS
Multi-threaded crawling
Open-redirection
Subdomain Takeover
SQL Injection
HTML INjection
SSRF
CSRF
CORS
Find vulnerable JS library
Information disclosure

Check for Information in recon

Web IP Address
Server IP Address
Cname Recods
DNS lookup
SPF lookup
Hidden IP
API Endpoints
JS endpoints
XSS Endpoints
directory Search
Subdomain Enumeration

Install

https://github.com/thenurhabib/r3con
cd r3con
chmod +x install.sh r3con.sh
./install.sh

Usage

./r3con -h

Example

./r3con -d example.com -a [Full Scan]
./r3con -d example.com -p [Passive reconnaissance]
./r3con -d example.com -a [Active reconnaissance]
./r3con -d example.com -m [Massive recon]
./r3con -d example.com -r [Active and passive reconnaissance]
./r3con -d example.com -v [Check Vulnerabilities only]

Gallery

Contribution, Credits & License

Ways to contribute

Suggest a feature
Report a bug
Fix something and open a pull request
Help me document the code
Spread the word

Licensed under the GNU GPLv3, see LICENSE for more information.

Thank You.

About

Multi-functional Web Recon & Vulnerability Scanner Tool

recon reconnaissance xss xss-vulnerability xss-scanner subdomain subdomain-enumeration subdomain-takeover open-redirect-injection sqlinjection sqli bash vulnerability-scanners vulnerability-scanner

GNU General Public License v3.0

Languages

Language:Shell 100.0%