AutoRecon is a powerful automated reconnaissance tool designed to simplify the process of subdomain enumeration and URL discovery. It integrates multiple tools like amass, subfinder, sublist3r, httpx, ffuf, waybackurls, katana, waymore, uro, and waybackrobots to provide a comprehensive workflow, including JavaScript endpoint extraction.
- Passive enumeration using
amass,subfinder, andsublist3r. - Active enumeration using
ffuf.
- Filters live domains using
httpx.
- Discovers URLs using
waybackurls,katana,waymore, andwaybackrobots. - Extracts JavaScript endpoints from discovered domains.
- Saves results in a structured directory for each domain, with sorted and deduplicated files.
- Linux-based system (e.g., Ubuntu, Debian, Kali Linux).
- Python 3 and
pipinstalled. - Go installed for tools like
subfinder,httpx, andffuf.
- Clone the repository:
git clone https://github.com/omarsamy10/autorecon.git cd autorecon - Make the installation script executable:
chmod +x install.sh
- Run the installation script:
This installs all required tools and moves
./install.sh
autoreconto/usr/local/binfor global access.
Run autorecon with a project name and one or more domains:
autorecon -n MyProject -d example.com example2.com-n, --project-name: The name of the project directory where results will be saved (required).-d, --domains: One or more domains to perform reconnaissance on.-c, --crawl: Enable URL discovery and crawling (including JS endpoints).-r, --recursive: Enable recursive JS endpoint extraction.-H, --header: Custom headers for JS crawling (e.g.,"Authorization: Bearer token").
Results are saved in the following directory structure:
MyProject/
├── example.com/
│ ├── domains.txt # Passive subdomain results
│ ├── domain.live # Live domains
│ ├── domains # Final subdomain list
│ ├── urls.txt # Sorted, deduplicated URLs from all tools
└── example2.com/
└── ...
autorecon -n MyProject -d example.com -c -r -H "User-Agent: CustomAgent"[+] Project directory created: MyProject
[+] Processing domain: example.com
[+] Directory created: MyProject/example.com
[+] Running passive subdomain enumeration...
[+] Passive subdomain enumeration completed
[+] Filtering live domains...
[+] Live domains filtered
[+] Running active subdomain enumeration...
[+] Active subdomain enumeration completed
[+] Running URL discovery and crawling...
[+] JS endpoints saved to js_endpoints.txt (sorted and deduplicated)
[+] URL discovery and crawling completed (sorted and deduplicated)
[+] All tasks completed. Results in 'MyProject' directory
Contributions are welcome! To contribute:
- Fork the repository.
- Create a new branch for your feature or bugfix.
- Commit your changes.
- Submit a pull request.
Thanks to the developers of the integrated tools: amass, subfinder, sublist3r, httpx, ffuf, waybackurls, katana, waymore, uro, and waybackrobots.
For questions, feedback, or support:
- Twitter: @omarsamy10
- Linkedin: omarsamy
Enjoy using AutoRecon! 🚀
- Updated Tools List: Included all tools from the current
autorecon.py, includinguroand JS endpoint extraction. - Installation: Updated to reflect the new
install.shbehavior (global install). - Usage: Changed to use the global
autoreconcommand and added all options (-c,-r,-H). - Output: Simplified to match the current script’s output files, removing unused ones like
amass.txt.