ghost-recon
CommunityAutomate web2 recon to map your attack surface.
Software Engineering#subdomain-enumeration#asset-discovery#continuous-monitoring#url-crawling#js-analysis#web2-recon
Authormlvpatel
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Web2 reconnaissance can be laborious and error-prone. ghost-recon automates subdomain enumeration, host discovery, URL crawling, directory fuzzing, and JS analysis to quickly map an attack surface and prioritize targets.
Core Features & Use Cases
- Subdomain enumeration using subfinder, Chaos API, and assetfinder to build a comprehensive domain list.
- Live host discovery with dnsx and httpx to identify reachable targets and endpoints.
- URL crawling with katana, waybackurls, and gau to collect historical and current paths.
- Directory fuzzing with ffuf to uncover hidden resources and endpoints.
- JavaScript analysis with LinkFinder and SecretFinder to reveal exposed APIs and secrets.
- Continuous monitoring for new subdomains, JS changes, and GitHub commits to track surface evolution. Use Case: When starting a web2 target, ghost-recon quickly generates an asset map and keeps it updated as the surface changes.
Quick Start
Start the ghost-recon pipeline on a web2 target to automatically enumerate subdomains, identify live hosts, crawl URLs, fuzz directories, analyze JavaScript, and set up continuous monitoring for surface changes.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: ghost-recon Download link: https://github.com/mlvpatel/sentinel-ai-offensive/archive/main.zip#ghost-recon Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.