Recsech – Web Reconnaissance Tools

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more.

Recsech - Web Reconnaissance Tools
Recsech – Web Reconnaissance Tools

There are several tools included with the application. They will allow attacker to get the following information and features:

  • Auto request with Proxy
  • Find Email – list all email addresses on the website.
  • HoneySpot Detected
  • Subdomain takeover
  • Check Technologies – The script will use api provided by wappalyzer to identify the technology used on the web resources.
  • Header Security – This will run a fingerprint and detect HTTP Strict Transport Security, Content Security Policy , XSS Protection , MIME Sniffing , X Frame Options and HTTP cookies.
  • Update Check
  • Port Scanner – This is using hackertarget api tools and it will run external scan with NMAP.
  • Sort Domain By IP
  • WordPress audit
  • Reconnaissance On Github – This will Github api and find any mention for the website on Github.
  • Language Selection
  • WAF – This tool will run a fingerprinting to detect web application firewall for large list of WAF technology including aeSecure WAF,Amazon WAF,Anquanbao WAF,Armor Defense WAF,F5 Networks WAF,Yunjiasu/Baidu WAF,Barracuda Networks WAF,Better WP,Security WAF,BIG-IP WAF and more.

You can read more and download this tool over here:

Notify of
Inline Feedbacks
View all comments