recon-sploit

Tool to list vulnerabilities that may be exploitable without access to the target (with shodan)

Features

Get version information and vulnerability list from Shodan and Censys
Search for exploit in Exploit-DB and Vulners

Usage

If you want to use censys, rename .env.sample to .env and fill in your credentials.

usage: recon-sploit.py [-h] (-l DOMAIN_LIST | -d DOMAIN | --cpe CPE | --cve CVE) [--show-duplicate SHOW_DUPLICATE]

Run recon-sploit.py with arguments

optional arguments:
  -h, --help            show this help message and exit
  -l DOMAIN_LIST, --domain-list DOMAIN_LIST
                        specify target domain list file
  -d DOMAIN, --domain DOMAIN
                        specify single domain or IP
  --cpe CPE             specify single CPE
  --cve CVE             specify single CVE
  --show-duplicate SHOW_DUPLICATE
                        show duplicate exploits

Example

recon example.com

python3 recon-sploit.py -d example.com

recon example.com subdomains

assetfinder example.com | sort | uniq > domains.txt

and

python3 recon-sploit.py -l domains.txt

Name		Name	Last commit message	Last commit date
Latest commit History 41 Commits
module		module
.env.sample		.env.sample
.gitignore		.gitignore
README.md		README.md
recon-sploit.py		recon-sploit.py
requirements.txt		requirements.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

recon-sploit

Features

Usage

Example

recon example.com

recon example.com subdomains

About

Releases

Packages

Languages

4equest/recon-sploit

Folders and files

Latest commit

History

Repository files navigation

recon-sploit

Features

Usage

Example

recon example.com

recon example.com subdomains

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages