jillraiyani/SentinalRecon

GitHub: jillraiyani/SentinalRecon

Stars: 0 | Forks: 0

# 🚀 Ultimate Automated Bug Bounty Framework

![Python](https://img.shields.io/badge/Python-3.8+-blue?style=for-the-badge&logo=python) ![Security](https://img.shields.io/badge/Security-Offensive-red?style=for-the-badge&logo=hackaday) ![Automation](https://img.shields.io/badge/Automation-Recon-green?style=for-the-badge) ![License](https://img.shields.io/badge/License-Educational-orange?style=for-the-badge) ### 🔥 Automated Recon • Parameter Discovery • Vulnerability Scanning A powerful Python-based offensive security automation framework designed for **bug bounty hunters**, **security researchers**, and **red teamers**.

# 📌 Overview This framework automates multiple phases of web reconnaissance and basic vulnerability testing into a single workflow. It combines: - Subdomain Enumeration - Live Host Discovery - Directory Bruteforcing - Parameter Discovery - Reflected XSS Testing - SQL Injection Checks - Structured Severity Reporting # ⚠️ Disclaimer # ✨ Features ## 🔍 Reconnaissance - Fast subdomain enumeration using `subfinder` - Live host detection using `httpx` - Automated target pipeline ## 📂 Content Discovery - Directory bruteforcing using `ffuf` - Hidden endpoint discovery - Response filtering for interesting status codes ## 🧠 Parameter Discovery Automatically extracts: - URL query parameters - HTML form parameters - Action URLs - Input fields ## 💥 Vulnerability Checks ### ✅ Reflected XSS Detection - Reflection-based payload testing - Basic payload injection checks ### ✅ SQL Injection Detection - Error-based detection - Response-difference analysis - Boolean logic checks ## 📊 Reporting Findings are automatically categorized by severity: | Severity | Type | |---|---| | 🔴 Critical | SQL Injection | | 🟠 High | XSS | | 🟡 Medium | Directory Discovery | | 🔵 Info | General Findings | # ⚙️ Tech Stack | Tool | Purpose | |---|---| | Python | Core framework | | subfinder | Subdomain enumeration | | httpx | Live host probing | | ffuf | Directory bruteforcing | | requests | HTTP requests | | BeautifulSoup | HTML parsing | # 🧱 Architecture ┌────────────────┐ │ Target Domain │ └──────┬─────────┘ │ ▼ ┌────────────────────────┐ │ Subdomain Enumeration │ │ (subfinder) │ └──────────┬─────────────┘ │ ▼ ┌────────────────────────┐ │ Live Host Discovery │ │ (httpx) │ └──────────┬─────────────┘ │ ▼ ┌────────────────────────┐ │ Directory Bruteforce │ │ (ffuf) │ └──────────┬─────────────┘ │ ▼ ┌────────────────────────┐ │ Parameter Discovery │ └──────────┬─────────────┘ │ ▼ ┌────────────────────────┐ │ XSS & SQLi Detection │ └──────────┬─────────────┘ │ ▼ ┌────────────────────────┐ │ Severity-Based Reports │ └────────────────────────┘ # 📦 Installation ## 1️⃣ Clone Repository git clone https://github.com/yourusername/ultimate-bounty-framework.git cd ultimate-bounty-framework ## 2️⃣ Install Python Dependencies pip install requests beautifulsoup4 ## 3️⃣ Install Required Tools ### 🔹 Subfinder https://github.com/projectdiscovery/subfinder ### 🔹 Httpx https://github.com/projectdiscovery/httpx ### 🔹 FFUF https://github.com/ffuf/ffuf # 📂 Wordlist Setup Update this path inside the script: WORDLIST_PATH = '/usr/share/wordlists/dirb/common.txt' # 🚀 Usage python3 framework.py example.com # 📁 Output Structure bounty_output_target_12345/ │ ├── target_subdomains.txt ├── target_live_hosts.txt ├── critical_findings.txt ├── high_findings.txt ├── medium_findings.txt ├── ffuf_results.json └── additional_outputs/ # ⚠️ Current Limitations - No authentication handling - No JS rendering - No DOM XSS - No WAF bypass - Possible false positives - No session management # 🏴‍☠️ Future Roadmap - [ ] Async architecture - [ ] Plugin system - [ ] Cloud recon modules - [ ] Headless browser integration - [ ] Distributed scanning # 👨‍💻 Author Built for: - Offensive Security Learning - Bug Bounty Automation - Recon Workflow Development - Security Research