bileltechno
commented
2 years ago Try the dev branch.
Closed sitanshuforever closed 2 years ago
bileltechno
commented
2 years ago Try the dev branch.
sitanshuforever
commented
2 years ago same issue..
six2dez
commented
2 years ago You have to reinstall and run again under dev branch, not just changing the branch
sitanshuforever
commented
2 years ago Here is what I did. Let me know if i did something wrong. I removed the reconftw with rm -rf then cloned it using git clone https://github.com/six2dez/reconftw -b dev then ran ./install.sh here. installation went smooth then again i tried to run commands with -d example.com and getting the same issue.
six2dez
commented
2 years ago Hey! Can you check again with main branch?
hhls
commented
2 years ago macOS big sur 11.2.1 After the installation is completed, the execution still prompts that the installation was not successful The master branch is the same as the dev branch
~/Documents/gitsave/reconftw dev* ❯ sudo ./install.sh Password:
####################################################################### reconFTW installer/updater script
This may take time. So, go grab a coffee!
Running: Looking for new reconFTW version
reconFTW is already up to date!
Running: Installing system packages
brew is already installed
Running: Installing/Updating Golang
Golang is already installed and updated
Running: Installing requirements
Running: Installing Golang tools (31)
puredns installed (1/31) waybackurls installed (2/31) interactsh-client installed (3/31) nuclei installed (4/31) analyticsrelationships installed (5/31) dnsx installed (6/31) dalfox installed (7/31) cf-check installed (8/31) roboxtractor installed (9/31) gau installed (10/31) Gxss installed (11/31) mapcidr installed (12/31) qsreplace installed (13/31) notify installed (14/31) gotator installed (15/31) cero installed (16/31) gospider installed (17/31) clouddetect installed (18/31) crlfuzz installed (19/31) resolveDomains installed (20/31) httpx installed (21/31) gowitness installed (22/31) ffuf installed (23/31) subjs installed (24/31) github-endpoints installed (25/31) unfurl installed (26/31) anew installed (27/31) gf installed (28/31) Amass installed (29/31) github-subdomains installed (30/31) dnstake installed (31/31)
Running: Installing repositories (23)
dnsvalidator installed (1/23) wafw00f installed (2/23) ultimate-nmap-parser installed (3/23) Corsy installed (4/23) dnsrecon installed (5/23) CMSeeK installed (6/23) brutespray installed (7/23) JSA installed (8/23) GitDorker installed (9/23) LinkFinder installed (10/23) uDork installed (11/23) pydictor installed (12/23) cloud_enum installed (13/23) testssl installed (14/23) Interlace installed (15/23) Oralyzer installed (16/23) ctfr installed (17/23) fav-up installed (18/23) massdns installed (19/23) gf installed (20/23) commix installed (21/23) pwndb installed (22/23) Gf-Patterns installed (23/23) mv: rename unimap-osx to /usr/local/bin/unimap: No such file or directory chmod: /usr/local/bin/unimap: No such file or directory chmod: /usr/local/bin/ppfuzz: No such file or directory
Running: Downloading required files
chmod: /Users/wangxd/Tools/axiom_config.sh: No such file or directory Running: Performing last configurations
Remember set your api keys:
WHOISXML API (WHOISXML_API in reconftw.cfg or env var)
Finished!
#######################################################################
~/Documents/gitsave/reconftw dev* 13m 28s ❯ ./reconftw.sh -d baidu.com -r
██▀███ ▓█████ ▄████▄ ▒█████ ███▄ █ █████▒▄▄▄█████▓ █ █░ ▓██ ▒ ██▒▓█ ▀ ▒██▀ ▀█ ▒██▒ ██▒ ██ ▀█ █ ▓██ ▒ ▓ ██▒ ▓▒▓█░ █ ░█░ ▓██ ░▄█ ▒▒███ ▒▓█ ▄ ▒██░ ██▒▓██ ▀█ ██▒▒████ ░ ▒ ▓██░ ▒░▒█░ █ ░█ ▒██▀▀█▄ ▒▓█ ▄ ▒▓▓▄ ▄██▒▒██ ██░▓██▒ ▐▌██▒░▓█▒ ░ ░ ▓██▓ ░ ░█░ █ ░█ ░██▓ ▒██▒░▒████▒▒ ▓███▀ ░░ ████▓▒░▒██░ ▓██░░▒█░ ▒██▒ ░ ░░██▒██▓ ░ ▒▓ ░▒▓░░░ ▒░ ░░ ░▒ ▒ ░░ ▒░▒░▒░ ░ ▒░ ▒ ▒ ▒ ░ ▒ ░░ ░ ▓░▒ ▒ ░▒ ░ ▒░ ░ ░ ░ ░ ▒ ░ ▒ ▒░ ░ ░░ ░ ▒░ ░ ░ ▒ ░ ░ ░░ ░ ░ ░ ░ ░ ░ ▒ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░░ ░ ░ ░ ░ ░ ░ dev-v2.1.4-32-g38c1a4c by @six2dez
Unable to check updates
Usage: ./reconftw.sh [-d domain.tld] [-m name] [-l list.txt] [-x oos.txt] [-i in.txt] [-r] [-s] [-p] [-a] [-w] [-n] [-i] [-h] [-f] [--deep] [-o OUTPUT]
TARGET OPTIONS -d domain.tld Target domain -m company Target company name -l list.txt Targets list, one per line -x oos.txt Exclude subdomains list (Out Of Scope) -i in.txt Include subdomains list
MODE OPTIONS -r, --recon Recon - Full recon process (only recon without attacks) -s, --subdomains Subdomains - Search subdomains, check tko and web probe -p, --passive Passive - Performs only passive steps -a, --all All - Perform all checks and exploitations -w, --web Web - Just web checks from list provided -n, --osint OSINT - Just checks public intel info -h Help - Show this help
GENERAL OPTIONS --deep Deep scan (Enable some slow options for deeper scan) -f confile_file Alternate reconftw.cfg file -o output/path Define output folder -v, --vps Axiom distributed VPS
USAGE EXAMPLES Recon: ./reconftw.sh -d example.com -r
Subdomain scanning with multiple targets: ./reconftw.sh -l targets.txt -s
Web scanning for subdomain list: ./reconftw.sh -d example.com -l targets.txt -w
Multidomain recon: ./reconftw.sh -m company -l domainlist.txt -r
Full recon with custom output and excluded subdomains list: ./reconftw.sh -d example.com -x out.txt -a -o custom/path
####################################################################### Checking installed tools
[] OneListForAll [NO] [] getjswords [NO] [] Massdns [NO] [] jq [NO] [] unimap [NO] [] emailfinder [NO] [] ppfuzz [NO] [] uro [NO] [*] bbrf [NO]
Try running the installer script again ./install.sh If it fails for any reason try to install manually the tools missed Finally remember to set the $tools variable at the start of this script If nothing works and the world is gonna end you can always ping me :D
Tools check finished #######################################################################
six2dez
commented
2 years ago Hi @hhls sorry but I will only give support for latest macOS versions (currently macOS 12.x)
sitanshuforever
commented
2 years ago Hey! Can you check again with main branch?
Tried just now. Still now working. Can i help with any kind of logs etc?
giany
commented
2 years ago Hey! Can you check again with main branch?
Tried just now. Still now working. Can i help with any kind of logs etc?
Run bash -x before the script..and paste the output.
sitanshuforever
commented
2 years ago Hey! Can you check again with main branch?
Tried just now. Still now working. Can i help with any kind of logs etc?
Run bash -x before the script..and paste the output.
Here is the result.
`RedmePro:reconftw chief$ bash -x reconftw.sh -d example.com
trap printout SIGINT
trap printout ERR
[[ darwin19.4.0 == \d\a\r\w\i\n* ]]
PATH='/usr/local/opt/gnu-getopt/bin:/usr/local/opt/curl-openssl/bin:/usr/local/opt/qt/bin:/Library/Frameworks/Python.framework/Versions/3.9/bin:/usr/local/Cellar/john/run:/Applications/oracle/product/instantclient_64/11.2.0.4.0/bin:/usr/local/opt/ncurses/bin:/usr/local/opt/icu4c/sbin:/usr/local/opt/icu4c/bin:/usr/local/opt/mysql-client/bin:/usr/local/share/dotnet:/Library/Frameworks/Python.framework/Versions/3.7/bin:/usr/local/sbin:/Users/chief/.jenv/shims:/Users/chief/go/bin:/usr/local/opt/gettext/bin:/usr/local/bin:/Users/chief/.jenv/shims:/Users/chief/.jenv/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin:/Applications/VMware Fusion.app/Contents/Public:/usr/local/go/bin:/usr/local/share/dotnet:/opt/X11/bin:~/.dotnet/tools:/Library/Apple/usr/bin:/Library/Frameworks/Mono.framework/Versions/Current/Commands:/Applications/Wireshark.app/Contents/MacOS:/Users/chief/.local/bin'
PATH='/usr/local/opt/coreutils/libexec/gnubin:/usr/local/opt/gnu-getopt/bin:/usr/local/opt/curl-openssl/bin:/usr/local/opt/qt/bin:/Library/Frameworks/Python.framework/Versions/3.9/bin:/usr/local/Cellar/john/run:/Applications/oracle/product/instantclient_64/11.2.0.4.0/bin:/usr/local/opt/ncurses/bin:/usr/local/opt/icu4c/sbin:/usr/local/opt/icu4c/bin:/usr/local/opt/mysql-client/bin:/usr/local/share/dotnet:/Library/Frameworks/Python.framework/Versions/3.7/bin:/usr/local/sbin:/Users/chief/.jenv/shims:/Users/chief/go/bin:/usr/local/opt/gettext/bin:/usr/local/bin:/Users/chief/.jenv/shims:/Users/chief/.jenv/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin:/Applications/VMware Fusion.app/Contents/Public:/usr/local/go/bin:/usr/local/share/dotnet:/opt/X11/bin:~/.dotnet/tools:/Library/Apple/usr/bin:/Library/Frameworks/Mono.framework/Versions/Current/Commands:/Applications/Wireshark.app/Contents/MacOS:/Users/chief/.local/bin' ++ getopt -o d:m:l:x:i:o:f:c:rspanwvh:: --long domain:,list:,recon,subdomains,passive,all,web,osint,deep,help,vps -n reconFTW -- -d example.com
PROGARGS=' -- d:m:l:x:i:o:f:c:rspanwvh:: --long domain:,list:,recon,subdomains,passive,all,web,osint,deep,help,vps -n reconFTW -- -d example.com'
eval set -- ' -- d:m:l:x:i:o:f:c:rspanwvh:: --long domain:,list:,recon,subdomains,passive,all,web,osint,deep,help,vps -n reconFTW -- -d example.com' ++ set -- -- d:m:l:x:i:o:f:c:rspanwvh:: --long domain:,list:,recon,subdomains,passive,all,web,osint,deep,help,vps -n reconFTW -- -d example.com
unset PROGARGS
true
case "$1" in
shift
break +++ dirname reconftw.sh ++ cd . ++ pwd -P
SCRIPTPATH=/Users/chief/Documents/pentest/reconftw
. /Users/chief/Documents/pentest/reconftw/reconftw.cfg ++ tools=/Users/chief/Tools ++++ dirname reconftw.sh +++ cd . +++ pwd -P ++ SCRIPTPATH=/Users/chief/Documents/pentest/reconftw ++++ echo /bin/bash +++ basename /bin/bash ++ profile_shell=.bashrc +++ git rev-parse --abbrev-ref HEAD +++ git describe --tags ++ reconftw_version=main-v2.2 ++ update_resolvers=true ++ proxy_url=http://127.0.0.1:8080/ ++ export GOROOT=/usr/local/go ++ GOROOT=/usr/local/go ++ export GOPATH=/Users/chief/go ++ GOPATH=/Users/chief/go ++ export 'PATH=/Users/chief/go/bin:/usr/local/go/bin:/Users/chief/.local/bin:/usr/local/opt/coreutils/libexec/gnubin:/usr/local/opt/gnu-getopt/bin:/usr/local/opt/curl-openssl/bin:/usr/local/opt/qt/bin:/Library/Frameworks/Python.framework/Versions/3.9/bin:/usr/local/Cellar/john/run:/Applications/oracle/product/instantclient_64/11.2.0.4.0/bin:/usr/local/opt/ncurses/bin:/usr/local/opt/icu4c/sbin:/usr/local/opt/icu4c/bin:/usr/local/opt/mysql-client/bin:/usr/local/share/dotnet:/Library/Frameworks/Python.framework/Versions/3.7/bin:/usr/local/sbin:/Users/chief/.jenv/shims:/Users/chief/go/bin:/usr/local/opt/gettext/bin:/usr/local/bin:/Users/chief/.jenv/shims:/Users/chief/.jenv/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin:/Applications/VMware Fusion.app/Contents/Public:/usr/local/go/bin:/usr/local/share/dotnet:/opt/X11/bin:~/.dotnet/tools:/Library/Apple/usr/bin:/Library/Frameworks/Mono.framework/Versions/Current/Commands:/Applications/Wireshark.app/Contents/MacOS:/Users/chief/.local/bin' ++ PATH='/Users/chief/go/bin:/usr/local/go/bin:/Users/chief/.local/bin:/usr/local/opt/coreutils/libexec/gnubin:/usr/local/opt/gnu-getopt/bin:/usr/local/opt/curl-openssl/bin:/usr/local/opt/qt/bin:/Library/Frameworks/Python.framework/Versions/3.9/bin:/usr/local/Cellar/john/run:/Applications/oracle/product/instantclient_64/11.2.0.4.0/bin:/usr/local/opt/ncurses/bin:/usr/local/opt/icu4c/sbin:/usr/local/opt/icu4c/bin:/usr/local/opt/mysql-client/bin:/usr/local/share/dotnet:/Library/Frameworks/Python.framework/Versions/3.7/bin:/usr/local/sbin:/Users/chief/.jenv/shims:/Users/chief/go/bin:/usr/local/opt/gettext/bin:/usr/local/bin:/Users/chief/.jenv/shims:/Users/chief/.jenv/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin:/Applications/VMware Fusion.app/Contents/Public:/usr/local/go/bin:/usr/local/share/dotnet:/opt/X11/bin:~/.dotnet/tools:/Library/Apple/usr/bin:/Library/Frameworks/Mono.framework/Versions/Current/Commands:/Applications/Wireshark.app/Contents/MacOS:/Users/chief/.local/bin' ++ AMASS_CONFIG=/Users/chief/.config/amass/config.ini ++ GITHUB_TOKENS=/Users/chief/Tools/.github_tokens ++ DEBUG_STD='&>/dev/null' ++ DEBUG_ERROR='2>/dev/null' ++ OSINT=true ++ GOOGLE_DORKS=true ++ GITHUB_DORKS=true ++ METADATA=true ++ EMAILS=true ++ DOMAIN_INFO=true ++ IP_INFO=true ++ METAFINDER_LIMIT=20 ++ SUBDOMAINS_GENERAL=true ++ SUBPASSIVE=true ++ SUBCRT=true ++ SUBANALYTICS=true ++ SUBBRUTE=true ++ SUBSCRAPING=true ++ SUBPERMUTE=true ++ SUBTAKEOVER=true ++ SUBRECURSIVE=true ++ SUB_RECURSIVE_PASSIVE=false ++ SUB_RECURSIVE_BRUTE=false ++ ZONETRANSFER=true ++ S3BUCKETS=true ++ REVERSE_IP=false ++ TLS_PORTS=21,22,25,80,110,135,143,261,271,324,443,448,465,563,614,631,636,664,684,695,832,853,854,990,993,989,990,992,993,994,995,1129,1131,1184,2083,2087,2089,2096,2221,2252,2376,2381,2478,2479,2482,2484,2679,2762,3077,3078,3183,3191,3220,3269,3306,3410,3424,3471,3496,3509,3529,3539,3535,3660,36611,3713,3747,3766,3864,3885,3995,3896,4031,4036,4062,4064,4081,4083,4116,4335,4336,4536,4590,4740,4843,4843,4849,5443,5007,5061,5321,5349,5671,5783,5868,5986,5989,5990,6209,6251,6443,6513,6514,6619,6697,6771,6697,7202,7443,7673,7674,7677,7775,8243,8443,8991,8989,9089,9295,9318,9443,9444,9614,9802,10161,10162,11751,12013,12109,14143,15002,16995,41230,16993,20003 ++ WEBPROBESIMPLE=true ++ WEBPROBEFULL=true ++ WEBSCREENSHOT=true ++ VIRTUALHOSTS=true ++ UNCOMMON_PORTS_WEB=81,300,591,593,832,981,1010,1311,1099,2082,2095,2096,2480,3000,3128,3333,4243,4567,4711,4712,4993,5000,5104,5108,5280,5281,5601,5800,6543,7000,7001,7396,7474,8000,8001,8008,8014,8042,8060,8069,8080,8081,8083,8088,8090,8091,8095,8118,8123,8172,8181,8222,8243,8280,8281,8333,8337,8443,8500,8834,8880,8888,8983,9000,9001,9043,9060,9080,9090,9091,9092,9200,9443,9502,9800,9981,10000,10250,11371,12443,15672,16080,17778,18091,18092,20720,32000,55440,55672 ++ AXIOM_SCREENSHOT_MODULE=webscreenshot ++ FAVICON=true ++ PORTSCANNER=true ++ PORTSCAN_PASSIVE=true ++ PORTSCAN_ACTIVE=true ++ CLOUD_IP=true ++ WAF_DETECTION=true ++ NUCLEICHECK=true ++ NUCLEI_SEVERITY=info,low,medium,high,critical ++ URL_CHECK=true ++ URL_GF=true ++ URL_EXT=true ++ JSCHECKS=true ++ FUZZ=true ++ CMS_SCANNER=true ++ WORDLIST=true ++ ROBOTSWORDLIST=true ++ PASSWORD_DICT=true ++ PASSWORD_MIN_LENGTH=5 ++ PASSWORD_MAX_LENGTH=14 ++ VULNS_GENERAL=false ++ XSS=true ++ CORS=true ++ TEST_SSL=true ++ OPEN_REDIRECT=true ++ SSRF_CHECKS=true ++ CRLF_CHECKS=true ++ LFI=true ++ SSTI=true ++ SQLI=true ++ BROKENLINKS=true ++ SPRAY=true ++ COMM_INJ=true ++ PROTO_POLLUTION=true ++ NOTIFICATION=false ++ SOFT_NOTIFICATION=false ++ DEEP=false ++ DEEP_LIMIT=500 ++ DEEP_LIMIT2=1500 ++ DIFF=false ++ REMOVETMP=false ++ REMOVELOG=false ++ PROXY=false ++ SENDZIPNOTIFY=false ++ PRESERVE=true ++ FFUF_FLAGS='-mc all -fc 404 -ac -sf -s' ++ HEADER='User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:72.0) Gecko/20100101 Firefox/72.0' ++ FFUF_THREADS=40 ++ HTTPX_THREADS=50 ++ HTTPX_UNCOMMONPORTS_THREADS=100 ++ GOSPIDER_THREADS=50 ++ GITDORKER_THREADS=5 ++ BRUTESPRAY_THREADS=20 ++ BRUTESPRAY_CONCURRENCE=10 ++ GAUPLUS_THREADS=10 ++ DNSTAKE_THREADS=100 ++ DALFOX_THREADS=200 ++ PUREDNS_PUBLIC_LIMIT=0 ++ PUREDNS_TRUSTED_LIMIT=400 ++ PUREDNS_WILDCARDTEST_LIMIT=30 ++ PUREDNS_WILDCARDBATCH_LIMIT=1500000 ++ WEBSCREENSHOT_THREADS=200 ++ GOWITNESS_THREADS=8 ++ RESOLVE_DOMAINS_THREADS=150 ++ PPFUZZ_THREADS=30 ++ DNSVALIDATOR_THREADS=200 ++ INTERLACE_THREADS=10 ++ CMSSCAN_TIMEOUT=3600 ++ FFUF_MAXTIME=900 ++ HTTPX_TIMEOUT=10 ++ HTTPX_UNCOMMONPORTS_TIMEOUT=10 ++ fuzz_wordlist=/Users/chief/Tools/fuzz_wordlist.txt ++ lfi_wordlist=/Users/chief/Tools/lfi_wordlist.txt ++ ssti_wordlist=/Users/chief/Tools/ssti_wordlist.txt ++ subs_wordlist=/Users/chief/Tools/subdomains.txt ++ subs_wordlist_big=/Users/chief/Tools/subdomains_big.txt ++ resolvers=/Users/chief/Tools/resolvers.txt ++ resolvers_trusted=/Users/chief/Tools/resolvers_trusted.txt ++ AXIOM_FLEET_LAUNCH=false ++ AXIOM_FLEET_NAME=reconFTW ++ AXIOM_FLEET_COUNT=5 ++ AXIOM_FLEET_REGIONS=eu-central ++ AXIOM_FLEET_SHUTDOWN=true ++ AXIOM_EXTRA_ARGS= ++ BBRF_CONNECTION=false ++ BBRF_SERVER=https://demo.bbrf.me/bbrf ++ BBRF_USERNAME=user ++ BBRF_PASSWORD=password ++ bred='\033[1;31m' ++ bblue='\033[1;34m' ++ bgreen='\033[1;32m' ++ byellow='\033[1;33m' ++ red='\033[0;31m' ++ blue='\033[0;34m' ++ green='\033[0;32m' ++ yellow='\033[0;33m' ++ reset='\033[0m'
'[' -s '' ']'
'[' ']'
'[' -n '' ']'
'[' -n '' ']' ++ id -u ++ grep -o '^0$'
[[ '' == \0 ]]
SUDO=sudo
startdir=/Users/chief/Documents/pentest/reconftw
banner
printf '\n\033[1;32m'
printf ' ██▀███ ▓█████ ▄████▄ ▒█████ ███▄ █ █████▒▄▄▄█████▓ █ █░\n' ██▀███ ▓█████ ▄████▄ ▒█████ ███▄ █ █████▒▄▄▄█████▓ █ █░
printf ' ▓██ ▒ ██▒▓█ ▀ ▒██▀ ▀█ ▒██▒ ██▒ ██ ▀█ █ ▓██ ▒ ▓ ██▒ ▓▒▓█░ █ ░█░\n' ▓██ ▒ ██▒▓█ ▀ ▒██▀ ▀█ ▒██▒ ██▒ ██ ▀█ █ ▓██ ▒ ▓ ██▒ ▓▒▓█░ █ ░█░
printf ' ▓██ ░▄█ ▒▒███ ▒▓█ ▄ ▒██░ ██▒▓██ ▀█ ██▒▒████ ░ ▒ ▓██░ ▒░▒█░ █ ░█ \n' ▓██ ░▄█ ▒▒███ ▒▓█ ▄ ▒██░ ██▒▓██ ▀█ ██▒▒████ ░ ▒ ▓██░ ▒░▒█░ █ ░█
printf ' ▒██▀▀█▄ ▒▓█ ▄ ▒▓▓▄ ▄██▒▒██ ██░▓██▒ ▐▌██▒░▓█▒ ░ ░ ▓██▓ ░ ░█░ █ ░█ \n' ▒██▀▀█▄ ▒▓█ ▄ ▒▓▓▄ ▄██▒▒██ ██░▓██▒ ▐▌██▒░▓█▒ ░ ░ ▓██▓ ░ ░█░ █ ░█
printf ' ░██▓ ▒██▒░▒████▒▒ ▓███▀ ░░ ████▓▒░▒██░ ▓██░░▒█░ ▒██▒ ░ ░░██▒██▓ \n' ░██▓ ▒██▒░▒████▒▒ ▓███▀ ░░ ████▓▒░▒██░ ▓██░░▒█░ ▒██▒ ░ ░░██▒██▓
printf ' ░ ▒▓ ░▒▓░░░ ▒░ ░░ ░▒ ▒ ░░ ▒░▒░▒░ ░ ▒░ ▒ ▒ ▒ ░ ▒ ░░ ░ ▓░▒ ▒ \n' ░ ▒▓ ░▒▓░░░ ▒░ ░░ ░▒ ▒ ░░ ▒░▒░▒░ ░ ▒░ ▒ ▒ ▒ ░ ▒ ░░ ░ ▓░▒ ▒
printf ' ░▒ ░ ▒░ ░ ░ ░ ░ ▒ ░ ▒ ▒░ ░ ░░ ░ ▒░ ░ ░ ▒ ░ ░ \n' ░▒ ░ ▒░ ░ ░ ░ ░ ▒ ░ ▒ ▒░ ░ ░░ ░ ▒░ ░ ░ ▒ ░ ░
printf ' ░░ ░ ░ ░ ░ ░ ░ ▒ ░ ░ ░ ░ ░ ░ ░ ░ \n' ░░ ░ ░ ░ ░ ░ ░ ▒ ░ ░ ░ ░ ░ ░ ░ ░
printf ' ░ ░ ░░ ░ ░ ░ ░ ░ \n' ░ ░ ░░ ░ ░ ░ ░ ░
printf ' ░ \n' ░
printf ' main-v2.2 by @six2dez\033[0m\n' main-v2.2 by @six2dez
check_version
timeout 10 git fetch
exit_status=127
'[' 127 -eq 0 ']'
printf '\n\033[1;31m Unable to check updates \033[0m\n\n'
Unable to check updates
startdir=/Users/chief/Documents/pentest/reconftw
'[' -n '' ']'
flist=
case $opt_mode in
help
printf '\n Usage: reconftw.sh [-d domain.tld] [-m name] [-l list.txt] [-x oos.txt] [-i in.txt] '
Usage: reconftw.sh [-d domain.tld] [-m name] [-l list.txt] [-x oos.txt] [-i in.txt] + printf '\n [-r] [-s] [-p] [-a] [-w] [-n] [-i] [-h] [-f] [--deep] [-o OUTPUT]\n\n'
[-r] [-s] [-p] [-a] [-w] [-n] [-i] [-h] [-f] [--deep] [-o OUTPUT]printf ' \033[1;34mTARGET OPTIONS\033[0m\n' TARGET OPTIONS
printf ' -d domain.tld Target domain\n' -d domain.tld Target domain
printf ' -m company Target company name\n' -m company Target company name
printf ' -l list.txt Targets list, one per line\n' -l list.txt Targets list, one per line
printf ' -x oos.txt Exclude subdomains list (Out Of Scope)\n' -x oos.txt Exclude subdomains list (Out Of Scope)
printf ' -i in.txt Include subdomains list\n' -i in.txt Include subdomains list
printf ' \n'
printf ' \033[1;34mMODE OPTIONS\033[0m\n' MODE OPTIONS
printf ' -r, --recon Recon - Full recon process (only recon without attacks)\n' -r, --recon Recon - Full recon process (only recon without attacks)
printf ' -s, --subdomains Subdomains - Search subdomains, check tko and web probe\n' -s, --subdomains Subdomains - Search subdomains, check tko and web probe
printf ' -p, --passive Passive - Performs only passive steps \n' -p, --passive Passive - Performs only passive steps
printf ' -a, --all All - Perform all checks and exploitations\n' -a, --all All - Perform all checks and exploitations
printf ' -w, --web Web - Just web checks from list provided\n' -w, --web Web - Just web checks from list provided
printf ' -n, --osint OSINT - Just checks public intel info\n' -n, --osint OSINT - Just checks public intel info
printf ' -h Help - Show this help\n' -h Help - Show this help
printf ' \n'
printf ' \033[1;34mGENERAL OPTIONS\033[0m\n' GENERAL OPTIONS
printf ' --deep Deep scan (Enable some slow options for deeper scan)\n' --deep Deep scan (Enable some slow options for deeper scan)
printf ' -f confile_file Alternate reconftw.cfg file\n' -f confile_file Alternate reconftw.cfg file
printf ' -o output/path Define output folder\n' -o output/path Define output folder
printf ' -v, --vps Axiom distributed VPS \n' -v, --vps Axiom distributed VPS
printf ' \n'
printf ' \033[1;34mUSAGE EXAMPLES\033[0m\n' USAGE EXAMPLES
printf ' Recon:\n' Recon:
printf ' ./reconftw.sh -d example.com -r\n' ./reconftw.sh -d example.com -r
printf ' \n'
printf ' Subdomain scanning with multiple targets:\n' Subdomain scanning with multiple targets:
printf ' ./reconftw.sh -l targets.txt -s\n' ./reconftw.sh -l targets.txt -s
printf ' \n'
printf ' Web scanning for subdomain list:\n' Web scanning for subdomain list:
printf ' ./reconftw.sh -d example.com -l targets.txt -w\n' ./reconftw.sh -d example.com -l targets.txt -w
printf ' \n'
printf ' Multidomain recon:\n' Multidomain recon:
printf ' ./reconftw.sh -m company -l domainlist.txt -r\n' ./reconftw.sh -m company -l domainlist.txt -r
printf ' \n'
printf ' Full recon with custom output and excluded subdomains list:\n' Full recon with custom output and excluded subdomains list:
printf ' ./reconftw.sh -d example.com -x out.txt -a -o custom/path\n' ./reconftw.sh -d example.com -x out.txt -a -o custom/path
tools_installed
printf '\n\n\033[1;32m#######################################################################\033[0m\n'
#######################################################################
printf '\033[1;34m Checking installed tools \033[0m\n\n' Checking installed tools
allinstalled=true
'[' -n /Users/chief/go ']'
'[' -n /usr/local/go ']'
'[' -n '/Users/chief/go/bin:/usr/local/go/bin:/Users/chief/.local/bin:/usr/local/opt/coreutils/libexec/gnubin:/usr/local/opt/gnu-getopt/bin:/usr/local/opt/curl-openssl/bin:/usr/local/opt/qt/bin:/Library/Frameworks/Python.framework/Versions/3.9/bin:/usr/local/Cellar/john/run:/Applications/oracle/product/instantclient_64/11.2.0.4.0/bin:/usr/local/opt/ncurses/bin:/usr/local/opt/icu4c/sbin:/usr/local/opt/icu4c/bin:/usr/local/opt/mysql-client/bin:/usr/local/share/dotnet:/Library/Frameworks/Python.framework/Versions/3.7/bin:/usr/local/sbin:/Users/chief/.jenv/shims:/Users/chief/go/bin:/usr/local/opt/gettext/bin:/usr/local/bin:/Users/chief/.jenv/shims:/Users/chief/.jenv/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin:/Applications/VMware Fusion.app/Contents/Public:/usr/local/go/bin:/usr/local/share/dotnet:/opt/X11/bin:~/.dotnet/tools:/Library/Apple/usr/bin:/Library/Frameworks/Mono.framework/Versions/Current/Commands:/Applications/Wireshark.app/Contents/MacOS:/Users/chief/.local/bin' ']'
'[' -f /Users/chief/Tools/uDork/uDork.sh ']'
'[' -f /Users/chief/Tools/brutespray/brutespray.py ']'
'[' -f /Users/chief/Tools/dnsrecon/dnsrecon.py ']'
'[' -f /Users/chief/Tools/fav-up/favUp.py ']'
'[' -f /Users/chief/Tools/Corsy/corsy.py ']'
'[' -f /Users/chief/Tools/testssl.sh/testssl.sh ']'
'[' -f /Users/chief/Tools/CMSeeK/cmseek.py ']'
'[' -f /Users/chief/Tools/ctfr/ctfr.py ']'
'[' -f /Users/chief/Tools/fuzz_wordlist.txt ']'
'[' -f /Users/chief/Tools/LinkFinder/linkfinder.py ']'
'[' -f /Users/chief/Tools/GitDorker/GitDorker.py ']'
'[' -f /Users/chief/Tools/commix/commix.py ']'
'[' -f /Users/chief/Tools/getjswords.py ']'
'[' -f /Users/chief/Tools/JSA/jsa.py ']'
'[' -f /Users/chief/Tools/cloud_enum/cloud_enum.py ']'
'[' -f /Users/chief/Tools/ultimate-nmap-parser/ultimate-nmap-parser.sh ']'
'[' -f /Users/chief/Tools/pydictor/pydictor.py ']'
type -P github-endpoints
type -P github-subdomains
type -P gospider
type -P wafw00f
type -P dnsvalidator
type -P gowitness
type -P amass
type -P waybackurls
type -P gau
type -P dnsx
type -P gotator
type -P cf-check
type -P nuclei
'[' -d /Users/chief/nuclei-templates ']'
type -P gf
type -P Gxss
type -P subjs
type -P ffuf
type -P massdns
type -P qsreplace
type -P interlace
type -P anew
type -P unfurl
type -P crlfuzz
type -P httpx
type -P jq
type -P notify
type -P dalfox
type -P puredns
type -P unimap
type -P resolveDomains
type -P emailfinder
type -P analyticsrelationships
type -P mapcidr
type -P ppfuzz
type -P searchsploit
type -P clouddetect
type -P interactsh-client
type -P uro
type -P cero
type -P bbrf
'[' true = true ']'
printf '\033[1;32m Good! All installed! \033[0m\n\n' Good! All installed!
printf '\033[1;34m Tools check finished\n' Tools check finished
printf '\033[1;32m#######################################################################\n\033[0m' #######################################################################
exit 1`
chilik
commented
2 years ago @sitanshuforever @six2dez I have fixed it to run on macOS, be sure to use homebrew and install the lynx, gnu-getopt and coreutils packages, then modify the script to the installation paths as such:
# macOS PATH initialization, thanks @0xtavian <3
if [[ "$OSTYPE" == "darwin"* ]]; then
PATH="/opt/homebrew/opt/gnu-getopt/bin:$PATH"
PATH="/opt/homebrew/opt/coreutils/libexec/gnubin:$PATH"
fi
BonkBink
commented
2 years ago I'm facing the same issue described. reconftw main-v2.3.2-10-g997bf10 MacBook Air M1, Monterey 12.3 And I've installed lynx, gnu-getopt and coreutils packages Any other idea what can be causing this?
six2dez
commented
2 years ago which is the value of $OSTYPE env var on your system?
BonkBink
commented
2 years ago It's darwin21.1.0 I've put at print line in the OS check block and it evaluates to true
# macOS PATH initialization, thanks @0xtavian <3
if [[ "$OSTYPE" == "darwin"* ]]; then
printf "OS\n"
printf "$OSTYPE\n"
PATH="/usr/local/opt/gnu-getopt/bin:$PATH"
PATH="/usr/local/opt/coreutils/libexec/gnubin:$PATH"
fireconftw git:(main) ✗ ./reconftw.sh -d example.com -r
OS
darwin21.1.0Thanks
Describe the bug After installing all the tools and dependencies via install.sh, when i am trying to run reconftw.sh file, its showing only usage description only no matter what switches/options i give.
To Reproduce Steps to reproduce the behavior: (MAC osx Monterey 12.1)
Screenshots If applicable, add screenshots to help explain your problem.
Desktop (please complete the following information):