8000 GitHub - Dyneteq/reconya: Network reconnaissance and asset discovery tool
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

Dyneteq/reconya

BranchesTags

Repository files navigation

Reconya

Network reconnaissance and asset discovery tool built with Go and React.

Overview

Reconya discovers and monitors devices on your network with real-time updates. Suitable for network administrators, security professionals, and home users.

Features

  • Network scanning with nmap integration
  • Device identification (MAC addresses, vendor detection, hostnames)
  • Real-time monitoring and event logging
  • Web-based dashboard
  • Device fingerprinting

Installation

Prerequisites

  • Docker and Docker Compose
  • Python 3.9+ (for docker-compose compatibility)

Python 3.12 Users

If using Python 3.12, you may encounter docker-compose issues. Solutions:

Option 1: Use Docker Compose V2 (recommended)

docker compose version  # verify V2 installation
docker compose up -d    # note: no hyphen

Option 2: Legacy docker-compose

pip install docker-compose  # requires Python 3.11 or earlier
# or
pipx install docker-compose

Quick Start

  1. Clone and setup:

    git clone https://github.com/Dyneteq/reconya-ai-go.git
cd reconya-ai-go
./setup.sh

  2. Access at http://localhost:3001

Manual Setup

  1. Configure environment:

    cp .env.example .env
# edit .env with your settings

  2. Start containers:

    # Standard setup (bridge networking)
docker compose up -d

# OR for full host network access (solves Docker IP detection issues)
docker compose -f docker-compose.yml -f docker-compose.host.yml up -d

Usage

  1. Login with credentials from your .env file
  2. Configure network range in settings
  3. Run discovery to scan your network
  4. Monitor devices in the dashboard

Development

Backend

cd backend
cp .env.example .env
go mod download
go run cmd/main.go

Frontend

cd frontend
npm install
npm start

Network Scanning Setup

For MAC address detection, install nmap:

# macOS
brew install nmap

# Ubuntu/Debian
sudo apt-get install nmap

Grant nmap privileges:

sudo chown root:admin $(which nmap)
sudo chmod u+s $(which nmap)

Troubleshooting

Common Issues

Python 3.12 errors

  • Error: ModuleNotFoundError: No module named 'distutils.spawn'
  • Solution: Use docker compose instead of docker-compose

App not accessible

  • Check ports 3001 and 3008 aren't in use
  • Verify containers are running: docker ps
  • Check logs: ./logs.sh

Missing MAC addresses

  • Ensure nmap is installed and has proper permissions
  • MAC addresses only visible on same network segment

CORS issues

  • Check CORS config in backend/middleware/cors.go
  • Verify API routing in nginx.conf

Docker IP detection issues

  • Error: Reconya detects Docker internal IP instead of host network
  • Solution 1: Set correct network range in .env: 
    NETWORK_RANGE=192.168.1.0/24  # Replace with your actual network
  • Solution 2: Use host networking for full network access: 
    docker compose -f docker-compose.yml -f docker-compose.host.yml up -d
  • Solution 3: Enable network capabilities (already enabled by default): 
    cap_add:
  - NET_ADMIN
  - NET_RAW

Architecture

  • Backend: Go API with SQLite database
  • Frontend: React/TypeScript with Bootstrap
  • Scanning: Multi-strategy network discovery with nmap integration
  • Deployment: Docker Compose

Scanning Algorithm

Discovery Process

Reconya uses a multi-layered scanning approach that combines nmap integration with native Go implementations:

1. Network Discovery (Every 30 seconds)

  • Multiple nmap strategies with automatic fallback
  • ICMP ping sweeps (privileged mode)
  • TCP connect probes to common ports (fallback)
  • ARP table lookups for MAC address resolution

2. Device Identification

  • IEEE OUI database for vendor identification
  • Multi-method hostname resolution (DNS, NetBIOS, mDNS)
  • Operating system fingerprinting via nmap
  • Device type classification based on ports and vendors

3. Port Scanning (Background workers)

  • Top 100 ports scan for active services
  • Service detection and banner grabbing
  • Concurrent scanning with worker pool pattern

4. Web Service Detection

  • Automatic discovery of HTTP/HTTPS services
  • Screenshot capture using headless Chrome
  • Service metadata extraction (titles, server headers)

Scanning Strategies

The system attempts these nmap commands in order:

# Primary: Privileged ICMP scan
sudo nmap -sn --send-ip -T4 -R --system-dns -oX - <network>

# Fallback 1: Unprivileged ICMP
nmap -sn --send-ip -T4 -oX - <network>

# Fallback 2: ARP scan
nmap -sn -PR -T4 -R --system-dns -oX - <network>

# Fallback 3: TCP SYN probe
nmap -sn -PS80,443,22,21,23,25,53,110,111,135,139,143,993,995 -T4 -oX - <network>

Concurrency Model

  • 50 concurrent goroutines for network scanning
  • 3 background workers for port scanning queue
  • Producer-consumer pattern for efficient resource utilization
  • Database locking with retry mechanism for data consistency

Contributing

  1. Fork the repository
  2. Create feature branch
  3. Make changes and test
  4. Submit pull request

License

Creative Commons Attribution-NonCommercial 4.0 International License. Commercial use requires permission.

🌟 Please check my other projects!

  • Tududi - Self-hosted task management with hierarchical organization, multi-language support, and Telegram integration
  • BreachHarbor - Cybersecurity suite for digital asset protection
  • Hevetra - Digital tracking for child health milestones

About

Network reconnaissance and asset discovery tool

reconya.com

Resources

Readme

License

View license
Activity
Custom properties

Stars

184 stars

Watchers

3 watching

Forks

12 forks
Report repository

Releases

1 tags

Sponsor this project

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages
0