This repository has been archived by the owner on Jul 12, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 6
/
config.conf
202 lines (168 loc) · 5.3 KB
/
config.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
# reconWTF cofiguration
# General values
# File descriptors
DEBUG_STD="&>/dev/null"
DEBUG_ERROR="2>/dev/null"
DEBUG_FILE=$recon_dir/$target_domain/.tmp/debug
reconwtf_dir="$(dirname $(realpath "$0"))"
tools=~/Tools
SCRIPTPATH="$( cd "$(dirname "$0")" >/dev/null 2>&1 ; pwd -P )"
profile_shell=".$(basename $(echo $SHELL))rc"
recon_dir=~/recon
update_resolvers=false
reconWTF_version="1.0.4"
# Здесь нужно указать данные вашего приватного репозитория на github для синхронизации результатов
git_add=false # true будет работать синхронизация false синхронизация рабоатать не будет
private_git_repos_name=recon_git # имя без https://github.com/
you_git_username=git_username
you_git_acces_token=ghp_token
# notifictions ntfu
ntfy="ntfy.sh/reconwtf_you" # https://ntfy.sh/
ntfy_end_modules=false # уведомлении о конце отработки функции
ntfy_end_count_script=true # после сканирования отсылаем отчет о всем сканировании
ntfy_title="$target_domain"
ntfy_tags="triangular_flag_on_post"
ntfy_priority="urgent"
# hackerone settings api
HACKERONE_USERNAME="YOU_H1_NAME"
HACKERONE_API_KEY="YOU_H1_API_KEY"
# notifictions notify
notify_end_modules=false # уведомлении о конце отработки функции
notify_end_count_script=true # после сканирования отсылаем отчет о всем сканировании
ntfy_title="Scan Result $target_domain"
# настраиваем notify для наших ботов в дискорд, нотфикация которых описана в конфиге
notify_bot_endsan_result_id="reconwtf"
notify_bot_new_subdomain_id="new-subdomain"
notify_bot_subdomain_takeover_id="sub-takeover"
notify_bot_new_scope_id="new-scope"
# Golang Vars (Comment or change on your own)
export GOROOT=/usr/local/go
export GOPATH=$HOME/go
export PATH=$GOPATH/bin:$GOROOT/bin:$HOME/.local/bin:$PATH
# Tools config files
NOTIFY_CONFIG=~/.config/notify/notify.conf # No need to define
SUBFINDER_CONFIG=~/.config/subfinder/config.yaml # No need to define
AMASS_CONFIG=~/.config/amass/config.ini
# API tokens
GITHUB_TOKEN=ghp_token
SHODAN_API_KEY=XXXXXXXXXXXXXXXXXXXXXXXX
XSS_SERVER=XXXXXXXXXXXXXXXXXXXXXXXX
virustotal_token=XXXXXXXXXXXXXXXXXXXXXXXX
spyse_token=XXXXXXXXXXXXXXXXXXXXXXXX
securitytrails_token=XXXXXXXXXXXXXXXXXXXXXXXX
# http option
HEADER="User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:72.0) Gecko/20100101 Firefox/72.0"
cookie="PHPSESIONID=XXXXXXXXXXXXXXX"
##########################################################################################
# -= Tools settings =- #
##########################################################################################
# jsmon settings
JSMON_SCAN=true
JSMON_CRON=true
JSMON_CRON_TIME="0 0 * * *"
JSMON_NOTIFY_TELEGRAM=True
JSMON_TELEGRAM_TOKEN="YOU TG TOKEN"
JSMON_TELEGRAM_CHAT_ID="YOU CHAT ID"
#JSMON_NOTIFY_SLACK=True
#JSMON_SLACK_TOKEN=sometoken
#JSMON_SLACK_CHANNEL_ID=somechannel
# subdomain enum
SUB_ENUM_GENERAL=true
SUB_ENUM_CERT=true
SUB_ENUM_CROBAT=false
SUB_ENUM_SYBFINDER=true
SUB_ENUM_AMASS=true
SUB_ENUM_BRUTEFORCE=true
SUB_ENUM_BRUTEFORCE_MINFILE=true
SUB_ENUM_BRUTEFORCE_MAXFILE=false
SUB_ENUM_PERMUTATION=false
SUB_ENUM_PERMUTATION_WORDLEN="2 -f" # -l 2 -> количестов используемых слов -f -> использовать только самые вероятные слова
# web detection
WEBS_GENERAL=true
WEB_VISUAL_INDENTIFICATION=true
WEBS_SUB_HTTPPROBE=true
WEBS_WEBSCREENSHOT=true
# Host
SCAN_HOST_GENERAL=true
SCAN_HOST_NAABO_WEBPROBE="1-65535"
SCAN_PORT_GENERAL=true
SCAN_PORT_NAABU_PORTS_LIST="1-65535"
SCAN_PORT_NAABU_NAMP_COMMAND="-nmap-cli 'nmap -sV'"
# endpoint enum
ENDP_ENUM_GENERAL=true
ENDP_ENUM_GAUPLUS=true
ENDP_ENUM_GITHUB=true
ENDP_ENUM_GOSPIDER=true
ENDP_ENUM_GOSPIDER_DEPTH=1
xurlfind3r=false
ENDP_GENERATION_LIST=true
ENDP_ALLOW_HTTPX=true
# dir enum
DIR_ENUM_GENERAL=true
# JavaScript recon
JS_GENERAL=true
JS_JSA=false
JS_LIVE_CHECS=true
JS_DOWNLOAD=true
JS_LINKFIND=true
JS_SECRET=true
JS_WORDS=true
JS_VARS=true
JS_FINDOM_XSS=true
JS_WAYBACK_SCAN=true
# Web analysis
CHECK_WAF=true
IPS=true
ZONETRANSFER=true
TESTSSL=true
IP_PROVIDER=true
HEADER_SECURITU_CHECK=true
HEADER_GREP=true
CHECK_WEBTEHNOLOGIES=true
FFUZING=true
GF=true
GF_ADVANCED=true
URL_EXTRACT_FILE=true
NUCLEI_CHECK=true
COMUNITY_ADDITIONAL_NUCLEI_TEMPLATES=false
NUCLEI_UPDATE_TEMPLATES=true
# Osint
S3BUCKET=true
DOMAIN_INFO=true
EMAILFIND=true
GOOGLE_DORKS=true
GITHUB_DORKS=true
METADATA=true
# vulns
CORS=true
OPEN_REDIRECT=true
S4XXBYPASS=true
# time out
FFUF_TIME=5
FFUF_MAXTIME=3
# threads
DNS_VALIDATION_THREADS=50
GITDORKER_THREADS=5
METAFINDER_LIMIT=20
#interlace threads
IN_JS_DOWNLOAD_FILE=5
IN_JS_LINK_FIND=5
IN_JS_SECRET_FIND=5
IN_SCAN_PORT_NAABU=5
IN_xurlfind3r=1
IN_FFUZING=10
# lists
dns_resolver=$tools/wordlist/resolvers.txt
brute_list_min=$tools/wordlist/subdomains.txt
brute_list_big=$tools/wordlist/subdomains_big.txt
permutations_list=$tools/wordlist/permutations_list.txt
fuzzing_list=$tools/wordlist/fuzz_wordlist.txt
# TERM COLORS
bred='\033[1;31m'
bblue='\033[1;34m'
bgreen='\033[1;32m'
yellow='\033[0;33m'
red='\033[0;31m'
blue='\033[0;34m'
green='\033[0;32m'
reset='\033[0m'