ReconPal : Leveraging NLP For Infosec

Recon is one of the most important phases that seem easy but takes a lot of effort and skill to do right. One needs to know about the right tools, correct queries/syntax, run those queries, correlate the information, and sanitize the output. All of this might be easy for a seasoned infosec/recon professional to do, but for rest, it is still near to magic. How cool it will be to ask a simple question like “Find me an open Memcached server in Singapore with UDP support?” or “How many IP cameras in Singapore are using default credentials?” in a chat and get the answer?

The integration of GPT-3, deep learning-based language models to produce human-like text, with well-known recon tools like Shodan, is the foundation of ReconPal. ReconPal also supports using voice commands to execute popular exploits and perform reconnaissance.

Built With

OpenAI GPT-3
Shodan API
Speech-to-Text
Telegram Bot
Docker Containers
Python 3

Getting Started

To get ReconPal up and running, follow these simple steps.

Prerequisites

Telegram Bot Token Use BotFather and create a new telegram bot. Refer to the documentation at https://core.telegram.org/bots
Shodan API:
Create a shodan Account and create a new API Key from https://account.shodan.io/
Google Speech-to-Text API:
Enable Speech-to-Text in GCP and get the credentials. Refer to these steps from the documentation https://cloud.google.com/speech-to-text/docs/before-you-begin
OpenAI API Key:
Create a free openAI account to try out the API. https://beta.openai.com/account/api-keys
Docker

sudo apt-get updates
sudo apt-get install docker.io
sudo curl -L “https://github.com/docker/compose/releases/download/1.26.0/docker-compose-$(uname -s)-$(uname -m)” -o /usr/local/bin/docker-compose
chmod +x /usr/local/bin/docker-compose

Installation

Clone the repo

git clone https://github.com/pentesteracademy/reconpal.git

Enter your OPENAI, SHODAN API keys, and TELEGRAM bot token in docker-compose.yml

OPENAI_API_KEY=
SHODAN_API_KEY=
TELEGRAM_BOT_TOKEN=

Start reconpal

docker-compose up

Usage

Open the telegram app and select the created bot to use ReconPal.

Click on start or just type in the input box.

/start

Register the model

/register

Test the tool with some commands.

scan 10.0.0.8

Related

LazyBox

July 6, 2023

In "Kali Linux"

InfoSec Black Friday Deals – “Friday Hack Fest” 2023 Edition

November 27, 2023

In "Cyber security"

Registry-Recon : Cobalt Strike Aggressor Script That Performs System/AV/EDR Recon

January 12, 2022

In "Kali Linux"

R K

Next Rekono : Execute Full Pentesting Processes Combining Multiple Hacking Tools Automatically »

Previous « Top IP Management Softwares in 2022

Leave a Comment

Share

Published by

R K

Tags: InfosecNLPReconPal

4 years ago

Recent Posts

How To

Install Apache on Ubuntu 20.04: Setup and Virtual Host Guide

Apache is one of the most widely used open-source web servers in the world. It is…

18 hours ago

How To

Add Swap Space on Ubuntu 20.04: Create, Enable, and Tune

Swap space is an area on disk that Linux uses when it runs out of physical…

18 hours ago

How To

Install Zoom on Ubuntu 20.04: Download, Setup, and Remove

Zoom is one of the most widely used video conferencing platforms. Zoom works on Windows, macOS,…

18 hours ago

How To

Install Webmin on Ubuntu 20.04: Complete Setup and Login Guide

Webmin is an open-source web-based control panel for Linux servers. It gives you a browser interface…

18 hours ago

How To

Install MariaDB on Ubuntu 20.04: Setup and Admin Access

MariaDB is an open-source relational database management system. It was created by the original MySQL developers…

19 hours ago

OSINT

Best OSINT Tools for Investigating Corruption 2026: Public Records and Link Analysis

Corruption investigations need accuracy, patience, and strong evidence. In 2026, OSINT tools can help researchers,…

19 hours ago

L