Recon Pi
This is the updated blog post for ReconPi v2.0!
ReconPi - A lightweight recon tool that performs extensive domain scanning with the latest tools using a Raspberry Pi, Golang and Docker. After the install.sh
script has been run the ReconPi only requires an internet connection and some power, easy does it.
The source code is available at https://github.com/x1mdev/ReconPi
Requirements
- Raspberry Pi 3+ + cables (Power and Ethernet)
- SD card, 8 GB minimum (16 GB recommended)
- Hypriot image (version 1.10.0)
- Etcher
- Keyboard + monitor (optional)
Initial setup
Download the version 1.10.0 image from https://blog.hypriot.com/downloads/ or use this direct download link.
After downloading the version 1.10.0 .img.xz
file we need to flash this image to the SD card. I would recommend using Etcher to do this, I have never had any issue with flashing an image so far and it’s super easy.
Select the downloaded image and insert your SD card. Etcher will automatically detect the card and you can simply continue by clicking on “Flash!”.
Attach all the cables to the Raspberry Pi, you can choose to use the SSH method or use a keyboard and monitor. I will be using the SSH method but all of the commands can be used with a monitor and keyboard as well.
SSH is enabled by default on the Hypriot images.
Preparing the system
Since all of the physical preparations are done, it is time to prepare the system itself!
Easy Installation
# Connect to the Raspberry Pi
ssh [email protected]
# Obtain install.sh:
curl -L https://raw.githubusercontent.com/x1mdev/ReconPi/master/install.sh | bash
Password: hypriot
Long, manual method
Find the ip address of the Recon Pi:
# run ifconfig to find your own IP address.
sudo nmap -sn 192.168.2.30/24 | grep -B 2 Pi
# Example output
Nmap scan report for 192.168.2.16
Host is up (0.0014s latency).
MAC Address: B8:27:EB:89:94:D8 (Raspberry Pi Foundation)
Login to the RPi with SSH:
# Replace the IP address with your own.
ssh [email protected]
Default username and password for this image: pirate:hypriot
To install all the required tools follow the steps below:
Download the ReconPi
repository:
git clone https://github.com/x1mdev/ReconPi.git
Navigate to the ReconPi directory:
cd ReconPi
Run the install script:
# Do NOT use sudo, it has issues with the creation of directories
./install.sh
Grab a cup of coffee, this will take a few minutes.
When the install.sh
script is done it will execute a reboot command because of all the changes that have been made.
First run
All tools are now configured and ready to go, you can log back in to run your first scan!
Run the script:
recon domain.tld
The script will run all the scans and you can just sit back and relax.
Results can be checked by simply navigating to the asset directory on the ReconPi and running the following command:
python -m SimpleHTTPServer $port (1337 for example)
This is the initial setup and can be used as a starting point for your security assessment. Please feel free to send in PR’s to contribute: https://github.com/x1mdev/ReconPi