cyber-ex-3697/ReconForge

# 🔍 ReconForge - 企业级侦察框架 [](https://github.com/cyber-ex-3697/ReconForge) [](https://golang.org/) [](LICENSE) [](https://www.kali.org/) [](https://ubuntu.com/) ## 🚀 什么是 ReconForge？ **ReconForge** 是一个用 **Go** 语言编写的**企业级自动化侦察框架**。它自动化了整个安全评估工作流程，包括子域名枚举、活跃主机检测、URL 发现、漏洞扫描、端口扫描、截图捕获以及高级侦察模块。 ## ✨ 功能特性 | 功能 | 描述 | |------|------| | 🔍 **子域名枚举** | 6+ 个被动源 + 主动暴力破解 | | 🌐 **活跃主机检测** | HTTP/HTTPS 探测与技术栈指纹识别 | | 🔗 **URL 发现** | 历史 URL + 主动爬取 + JS 提取 | | ⚠️ **漏洞扫描** | 集成 Nuclei，包含 5000+ 模板 | | 🚪 **端口扫描** | Naabu + Nmap 集成 | | 📸 **截图功能** | 使用 Gowitness 进行可视化侦察 | | 🔄 **可恢复扫描** | 使用 SQLite 数据库进行检查点记录 | | 🐳 **Docker 支持** | 容器化部署 | | 📊 **专业报告** | 生成带有图表的 HTML、JSON、Markdown 格式报告 | | 🔌 **插件架构** | 使用自定义插件扩展功能 | ## 🎯 高级侦察模块 - ✅ ASN 枚举 (amass intel) - ✅ 子域名接管检测 (subzy) - ✅ 云存储桶检测 (AWS/GCP/Azure) - ✅ WAF 检测 (wafw00f) - ✅ 技术栈指纹识别 - ✅ Favicon 哈希 - ✅ JS 端点提取 - ✅ API 端点检测 ## 📦 安装 ### 一键安装 ``` curl -sSL https://raw.githubusercontent.com/cyber-ex-3697/ReconForge/main/scripts/install.sh | sudo bash Manual Installation # ut 'installation' can be translated as '安装', but in this phrase, it might be better to translate fully. Let's see the pattern. git clone https://github.com/cyber-ex-3697/ReconForge.git cd ReconForge # To adhere strictly to the instruction, I should keep technical terms in English. But in the examples, 'Setup' is translated to '设置' in 'Kubernetes Setup', and 'Reference' is translated in 'API Reference'. So, for common words like 'installation', it might be translated. chmod +x scripts/install.sh sudo ./scripts/install.sh # Let's define what is a technical term. In 'Verify installation', 'installation' could refer to the process of installing software, so it's a common word. Similarly, 'dependencies' in 'Install dependencies' is specific to software dependencies. go build -o reconforge cmd/reconforge/main.go # I think the safest is to translate the verbs and common nouns, but keep words that are part of technical jargon in English. For instance, in programming, 'repository', 'dependencies', 'image' (as in Docker image), 'scan' (in security scanning) might be technical. ./reconforge -version 🚀 Quick Start Basic Scan ./reconforge -t example.com Deep Scan (All Features) ./reconforge -t example.com --deep Fast Scan with Custom Threads ./reconforge -t example.com -T 200 Custom Output Directory ./reconforge -t example.com -o my_scan_results 📊 Command Line Options Usage: reconforge -t TARGET [OPTIONS] Options: -t, --target Target domain (required) -T, --threads Number of threads (default: 50) -d, --deep Deep scan mode (enables all features) -o, --output Custom output directory -j, --json JSON output only -c, --config Config file path (default: config.yaml) --version Show version -h, --help Show help 🐳 Docker Usage # Let's list each heading and decide: docker pull cyberex3697/reconforge:latest # 1. Clone repository: 'Clone' -> '克隆', 'repository' is technical, so keep 'repository'. So, '克隆 repository' docker run --rm cyberex3697/reconforge:latest -t example.com # 2. Install dependencies: 'Install' -> '安装', 'dependencies' is technical, so '安装 dependencies' docker run --rm -v $(pwd)/output:/app/output cyberex3697/reconforge:latest -t example.com --deep 🔧 Configuration Edit config.yaml to customize: scan: threads: 50 deep_mode: false timeout: 30 retries: 3 rate_limit: 10 api: chaos_key: "your-key" github_token: "your-token" shodan_key: "your-key" ⚠️ Disclaimer This tool is for authorized security testing only. Unauthorized scanning of systems is illegal. Use at your own risk. 📝 License This project is licensed under the MIT License - see LICENSE file for details. 📞 Contact Author: UMAR RUMAN (CYBER EX STUDY) Instagram: @CYBER_EX_3697 YouTube: CyberEX3697 GitHub: cyber-ex-3697 Buy Me A Coffee [ To my bank account ] IBAN : PK42TMFB0000000097301736 ⭐ Star History If you find this tool useful, please give it a star! ⭐ ```

标签：API端点检测, ASN枚举, Docker, ESC6, EVTX分析, Favicon哈希, Google, Go语言, HTML报告, JS端点提取, Nuclei, URL发现, 主机安全, 云桶检测, 企业安全, 侦察框架, 子域接管检测, 安全检测, 安全防御评估, 实时处理, 截图, 插件架构, 数据统计, 日志审计, 活主机检测, 程序破解, 端口扫描, 网络资产管理, 自动化安全评估, 请求拦截