A comprehensive reconnaissance and vulnerability scanning tool that combines multiple security assessment capabilities into a single automated workflow.
- Subdomain Enumeration: Discovers all subdomains associated with the target domain
- Live Host Detection: Identifies active hosts from discovered subdomains
- Port Scanning: Performs detailed port scans on live hosts
- Vulnerability Scanning: Uses nuclei for detecting security vulnerabilities
- Directory Enumeration: Discovers hidden directories and sensitive files
- Screenshot Capture: Takes automated screenshots of live hosts and interesting pages
- Comprehensive Reporting: Generates detailed HTML reports with:
- Modern and responsive UI
- Statistics dashboard
- Color-coded severity indicators
- Organized sections for different scan types
- Interactive tables and data presentation
- Clone the repository:
git clone https://github.com/yourusername/recon_scanner.git
cd recon_scanner- Install Python dependencies:
pip install -r requirements.txt- Install system dependencies:
# For screenshot functionality
playwright install chromiumBasic usage:
python main.py -t example.comThe tool will automatically:
- Enumerate subdomains
- Detect live hosts
- Perform port scanning
- Run vulnerability scans
- Enumerate directories
- Capture screenshots
- Generate comprehensive reports
The tool generates several types of reports in the output directory:
- HTML report with interactive UI
- JSON reports for each scan type
- CSV export of findings
- Screenshots of discovered pages
The tool uses a config.yaml file for customization. You can modify:
- Scan timeouts
- Thread counts
- Custom wordlists
- Screenshot settings
- Output formats
- Python 3.8+
- Playwright
- Nuclei
- Additional dependencies listed in requirements.txt
- Always ensure you have permission to scan the target
- Be mindful of rate limiting and bandwidth usage
- Some features may require root/admin privileges
- Handle scan results securely as they may contain sensitive information
Contributions are welcome! Please feel free to submit a Pull Request.
This project is licensed under the MIT License - see the LICENSE file for details.
- Nmap for port scanning
- Nuclei for vulnerability scanning
- Playwright for screenshot capabilities
- Other open source tools and libraries used in this project
This tool is for educational and authorized security testing purposes only. Users are responsible for obtaining appropriate permissions before scanning any systems they don't own.
Below are sample screenshots from different stages of the scanning process and the final report output. These demonstrate what users can expect after running the tool.
