search

six2dez / reconftw

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
MIT License
5.59k stars 910 forks source link

Subdomain bruteforcing doesn't works on WSL Linux. #169

Closed 0-0eth0 closed 3 years ago

0-0eth0 commented 3 years ago

Describe the bug Hi team, As we discussed on group, i was testing this tool on my WSL Linux, i fulfilled all installation requirements, then i started my recon on this beast tool, it was running great but in between it got stuck on subdomain bruteforcing part, initially i thought maybe it takes time. But waited for almost 3-4 hours but didn't worked, maybe i dont know massdns isn't compatible with WSL linux, also i think nmap is not supported for WSL linux.

To Reproduce Steps to reproduce the behavior:

  1. Install this beast tool on WSL linux.
  2. After fulfilling all requirements, enter the target.
  3. You will see it will fetch the passive subd enum but when it comes to subdomain bruteforcing, it will get stuck just next after crt.sh scanning.
  4. Same with port scanning too.

Desktop (please complete the following information):

six2dez commented 3 years ago

As said here https://github.com/microsoft/WSL/issues/2039, WSL has some limitations that can leads to issues with this tool and other security tools