An Adavnced Automation Tool For Web-Recon Developed For Linux Systems
It's A Tool To Automate The Web Reconnaissance Proccess, Which Make It Easier To Gather Informations About Your Target. This Tool Will Help You In Your Bug Hunting Or Web Penetration Testing Operation Because It Not Only Gather Informations About The Target, But Also It Arranges All These Information In A Structed Way Which Makes You Analyse The Data In A Good Way.
This Tool Works In Linux Systems, Specially In Debian & Debian Based Systems Like:
- Kali Linux
- Parrot OS
- Ubuntu
- Debian
- Back Box
And Other Debian Based Linux Distro's
This Is An Automated Tool, So Simply You Give It A Target Then Simply The Tool Took All The Information & And Save The Results In Ordered Directories & Files, But When You Do The Recon You Just Use This Tool, But Also You Should Do Some Manual Activity, This Mindmap Shows The Whole Operation Of BlackDragon Recon Methodology:
So Any Tool Based Recon In This Methodology, I Put It Here In This Automation Tool, But I Prefer To Do So Recon Manually, So First You Should Search Deeply In The IOT Search Engines Like:
Also You Should Search In Some FTP Search Engines Like:
When You Wanna Make A Powerfull Recon, You Should Also Look At:
- Hunter.io -> For Target Email Searching
- Public-WWW -> For String Searching In Public Source Codes
-
Subdomain-Gathering Using:
-
Subfinder
-
Sublist3r
-
Amass
-
Assetfinder
-
Knockpy
-
github-subdomains
-
Getting The Whole Subdomain Gathered Then Filter The Unique Domains And Extract The Only Live Subdomain Using:
-
httprobe
-
Fuzzing The Application Target Based Using:
-
Gobuster
-
Dirsearch
-
Dirb
-
Endpoints Gathering Using:
-
Waybackurls
-
github-endpoints
-
DNS Information Gathering Using:
-
DNSMap
-
DNSEnum
-
MassDNS
- Parameter Fuzzing
- CVE Scanning
- Subdomain Screenshot
- IoT Search Engines Discovery
Simply After Cloning The Repository By Typing :
git clone https://github.com/Cyber-Guy1/BlackDragon.git
Then Open Up The BlackDragon Directory:
cd BlackDragon/
After That Give The Execution Permission To The Installation Script And The Tool Script:
chmod +x install; chmod +x Black-Dragon
Finally Run The Installation Script:
./install
Simply:
./Black-Dragon example.com
Note: DO NOT Add http:// or https:// In The Domain, The Tool Do This Automatically
Stay Secure ;)
M 💕 N