Categories: Pentesting Tools

Reconator – Automated Recon for Pentesting & Bug Bounty

Reconator is a Framework for automating your process of reconnaissance without any Computing resource (Systemless Recon) at free of cost. It is designed to host on Heroku which is a free cloud hosting provider.

It performs the work of enumerations along with many vulnerability checks and obtains maximum information about the target domain.

It also performs various vulnerability checks like XSS, Open Redirects, SSRF, CRLF, LFI, SQLi, and much more. Along with these, it performs OSINT, fuzzing, Dorking, port scanning, and nuclei scanning on your target.

Reconator receives all the targets that need to be reckoned via a Web Interface and adds them into the Queue and Notifies via Telebot at the start and end of Recon on a target. So this is 100% automated and doesn’t require any manual interaction

Requirements

  • Heroku Free account (For Deploying)
  • Telegram account (For notifications)

Demo Video

Usage

WEB APPLICATION PATHS

pathDescription
(/) homeRoot page where you will add targets
/initialiseInitialize the Database and the cronjob
/queueThe targets added will be in the queue can manage targets
/scannedIt contains list of all scanned targets can view results by results
/issuesIt has a quick link for reporting a issue and tool improvement

Features

  • Systemless Recon 100% Free
  • Fast scan and Easy to use
  • Permanent storage of Results in DB
  • Notification support via Telegram bot
  • Fully Automated Scanner
  • Easy access via Web UI
  • Queue support allows adding many targets
  • Easy Deploy Easy Recon
  • Runs 24/7 for 22 Days [Heroku – 550 hrs/month free]
Febi

Recent Posts

Cybersecurity – Tools And Their Function

Cybersecurity tools play a critical role in safeguarding digital assets, systems, and networks from malicious…

2 hours ago

MODeflattener – Miasm’s OLLVM Deflattener

MODeflattener is a specialized tool designed to reverse OLLVM's control flow flattening obfuscation through static…

2 hours ago

My Awesome List : Tools And Their Functions

"My Awesome List" is a curated collection of tools, libraries, and resources spanning various domains…

2 hours ago

Chrome Browser Exploitation, Part 3 : Analyzing And Exploiting CVE-2018-17463

CVE-2018-17463, a type confusion vulnerability in Chrome’s V8 JavaScript engine, allowed attackers to execute arbitrary…

2 hours ago

Chrome Browser Exploitation, Part 1 : Introduction To V8 And JavaScript Internals

The blog post "Chrome Browser Exploitation, Part 1: Introduction to V8 and JavaScript Internals" provides…

3 hours ago

Chrome Browser Exploitation, Part 3: Analyzing and Exploiting CVE-2018-17463

The exploitation of CVE-2018-17463, a type confusion vulnerability in Chrome’s V8 JavaScript engine, relies on…

5 hours ago