ENNAENNA

reconftw

MIT

๐Ÿ•ธ Web Scanning ยท Shell

reconftw is an automated reconnaissance pipeline that chains together best-of-breed security tools into a comprehensive, single-command recon workflow. Running reconftw against a target domain triggers a full pipeline: subdomain enumeration, DNS resolution, port scanning, web probing, screenshot capture, technology fingerprinting, URL collection, parameter extraction, JavaScript analysis, vulnerability scanning, and nuclei template execution. The tool installs and manages all its dependencies automatically, making it one of the easiest ways to get a professional recon pipeline running. Configuration is done through a single profile file where you can enable/disable specific modules and set scope boundaries. reconftw outputs organized results in a structured directory format with separate files for each recon stage. With over 7,000 GitHub stars, it is one of the most popular recon automation frameworks in the bug bounty community.

7.5kstars
1.2kforks
1issues
Updated 20d ago
+I use this
View on GitHubOfficial Website

Use Cases

  • Full-stack automated recon from a single command
  • Bug bounty target enumeration
  • Chaining multiple recon tools into one pipeline

Tags

reconautomationpipelinebug-bountybugbountybugbounty-tooldnshackingnucleiosintpenetration-testingpentestpentest-toolpentestingreconnaissancescannersecuritysecurity-toolssubdomainsubdomain-enumerationvulnerabilities

Details

Category
๐Ÿ•ธ Web Scanning
Language
Shell
License
MIT
Platforms
๐Ÿงlinux๐ŸŽmacos

Links

GitHub Repository

github.com/six2dez/reconftw

Official Website

docs.reconftw.com

Releases

github.com/six2dez/reconftw/releases

Issues

github.com/six2dez/reconftw/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Community Reviews

Alternatives & Comparisons

HexStrike AI

Python

MCP server giving AI agents access to 150+ cybersecurity tools for automated pentesting, vulnerability discovery, and bug bounty automation.

Compare reconftw vs HexStrike AI

More in Web Scanning

httpx

Go

Fast multi-purpose HTTP toolkit. Probes for running HTTP servers with retries and fallbacks.

http-probetech-detectionprojectdiscovery

Nikto

Perl

Classic web server scanner. Tests for dangerous files, outdated server software, and version-specific problems.

web-serverclassiccgi-scan

Gobuster

Go

Directory/file, DNS, and vhost busting tool. Brute-forces URIs, DNS subdomains, virtual host names, and S3 buckets.

directory-brutedns-brutevhost

Feroxbuster

Rust

Fast, recursive content discovery tool written in Rust. Like gobuster on steroids with auto-recursion.

directory-bruterecursiverust

Burp Suite Community

Java

Web vulnerability scanner and proxy. Intercept, modify, and replay HTTP/S traffic for web app testing.

proxyweb-appinterceptor

ffuf

Go

Fast web fuzzer written in Go. Fuzz anything - URLs, headers, POST data - with blazing speed.

fuzzingdirectory-brutefast