KidRecon: The Ultimate Automated Subdomain Reconnaissance Tool for Ethical Hackers

Angix black
2 min readSep 29, 2024

In the fast-paced world of penetration testing, efficiency and accuracy are key. Enter KidRecon, a robust and automated subdomain reconnaissance tool built to streamline the discovery of subdomains and gather valuable information from various sources. Designed with ethical hacking and penetration testing in mind, KidRecon helps professionals focus on what really matters

🚨 Disclaimer

KidRecon is intended solely for ethical hacking and penetration testing. Unauthorized use of this tool for illegal activities is strictly prohibited. The creator is not responsible for any misuse of this software.

🌟 Why Choose KidRecon?

KidRecon comes loaded with advanced features that make reconnaissance easier and more comprehensive. Whether you’re performing a bug bounty hunt, a penetration test, or red teaming, this tool does the heavy lifting for you by automating the tedious aspects of reconnaissance.

⚡ Key Features

  • Automated Subdomain Enumeration:
  • Integrates with leading subdomain enumeration tools such as:
  • Subfinder
  • Assetfinder
  • Sublist3r
  • crt.sh
  • Consolidates data from multiple sources, providing a broad view of your target’s attack surface.
  • Live Subdomain Detection:
  • Quickly detects live subdomains using HTTPx, enabling you to identify active hosts.
  • Web Technology Identification:
  • Easily identify technologies running on detected subdomains with customized filters for popular web platforms.
  • URL Extraction:
  • Fetch hidden URLs and potential endpoints using tools like Waybackurls, Paramspider, and Katana. These tools allow you to dig deep into historical and parametric data, enhancing your ability to find hidden gems.
  • Sensitive File Filtering:
  • Automatically filter out sensitive files such as .php, .env, .json, and more, that could potentially expose configuration settings or credentials.
  • Get Parameters Filtering:
  • Use gf to identify and extract GET parameters, which could be helpful for injection-based vulnerabilities (like XSS or SQLi).
  • User-Friendly CLI:
  • Enjoy a colorful and well-organized command-line interface, making it easier to parse results at a glance. Information is presented clearly and concisely, ensuring that you can quickly identify what matters.

📦 Installation Guide

Getting started with KidRecon is simple. Follow these steps to set it up:

  1. Run the Setup Script:
chmod +x setup.sh
./setup.sh

2. The script will install all the necessary dependencies and tools. Most of these can be installed via common package managers like apt or pip, or by cloning from their GitHub repositories.

3. Execute KidRecon: Once installed, you can start the tool with the following commands:

kidrecon
kr

🔗 Check out KidRecon on GitHub: KidRecon GitHub Repository

🔗 Video :

Sign up to discover human stories that deepen your understanding of the world.

Free

Distraction-free reading. No ads.

Organize your knowledge with lists and highlights.

Tell your story. Find your audience.

Membership

Read member-only stories

Support writers you read most

Earn money for your writing

Listen to audio narrations

Read offline with the Medium app

No responses yet

What are your thoughts?