CTFBoost

**What is this?** A recon tool for bug bounty hunters that simplifies and automates the enumeration process during security assessments. ## Features * HTTP host probing * DNS record scanning * IP address extraction * Port scanning * Web server detection * Service/version detection * Shodan integration for additional recon * Google Dorking for web exposure discovery * Wayback Machine for archived urls * Dir/subdir fuzzing * 403 Forbidden bypass attempts * Web vulnerability scanning with Nikto * Security header analysis for HTTP responses * Fetch html and js files * Results saved per IP/domain * AI generated summary report with OpenAI/Ollama models ## Installation git clone https://github.com/KafetzisThomas/CTFBoost.git cd CTFBoost mv .env.example .env nano .env # modify file, instructions inside sudo python3 install.py ## Usage usage: main.py [-h] [--probe] [--dnsenum] [--quicknmap] [--fullnmap] [--shodan] [--google-dork] [--wayback-machine] [--ffufdir] [--ffufsub] [--nikto] [--frontend-fetch] [--ai-report] target positional arguments: target target host or ip address options: -h, --help show this help message and exit --probe probe the host --dnsenum perform dns enumeration --quicknmap run a quick nmap scan --fullnmap run a full nmap scan --shodan fetch shodan info --google-dork perform google dorking recon --wayback-machine fetch archived urls from the wayback machine --ffufdir perform directory fuzzing with ffuf --ffufsub perform subdomain fuzzing with ffuf --nikto scan for web vulnerabilities using nikto --frontend-fetch fetch front end files (html,css,js) --ai-report generate ai summary report of all scan results ## Examples Probe the target: uv run main.py --probe DNS record scan: uv run main.py --dnsenum Quick nmap scan: uv run main.py --quicknmap Full nmap scan: uv run main.py --fullnmap Search target with shodan: uv run main.py --shodan Search target for exposed sensitive info with Google Dorking: uv run main.py --google-dork Search for archived urls with Wayback Machine uv run main.py --wayback-machine Fuzz for directories with ffuf: uv run main.py --quicknmap --ffufdir Fuzz for subdomains with ffuf: uv run main.py --quicknmap --ffufsub Web vulnerability scanning with nikto: uv run main.py --quicknmap --nikto Fetch html and js files: uv run main.py --quicknmap --frontend-fetch Generate an AI summary report: uv run main.py --probe --quicknmap --ai-report **Note:** Flags can be combined to run multiple scans in one command. ## Disclaimer: Educational Use Only **CTFBoost** is a tool for `learning` and `practicing` recon techniques in ethical hacking, bug bounty hunting and CTFs. It must only be used on systems you own or have permission to test. Use responsibly and for **educational purposes only**.