Recon-ng- The Metasploit of recon

  • interface and syntax is pretty much identical to Metasploit

[Modules]{.underline}

[xssed]{.underline}

There is a module called xssed that finds known xss vulnerabilities that have been reported but not yet fixed

[google_site_web]{.underline}

A module that finds subdomains by leveraging google searches

  • Many of the modules in recon-ng require API keys with their respective service

providers.

PreviousCurl[Banner Grabbing]Nextproxy listener in burp

Last updated