ReconPi - A lightweight recon tool that performs extensive domain scanning with the latest tools using a Raspberry Pi, Golang and Docker. After the
install.sh script has been run the ReconPi only requires an internet connection and some power, easy does it.
The source code is available at https://github.com/x1mdev/ReconPi
- Raspberry Pi 3+ + cables (Power and Ethernet)
- Keyboard + monitor (optional)
- SD card, 8 GB minimum (16 GB recommended)
- Re4son Pi Kernel
Starting from the bottom
__________ __________.__ \______ \ ____ ____ ____ ____\______ \__| | _// __ \_/ ___\/ _ \ / \| ___/ | | | \ ___/\ \__( <_> ) | \ | | | |____|_ /\___ >\___ >____/|___| /____| |__| \/ \/ \/ \/ v1.1.0 - by @x1m_martijn
After downloading the latest
.img.xz file we need to flash this image to the SD card. I would recommend using Etcher to do this, I never had any issue with flashing an image so far and it’s super easy.
Select the downloaded image and insert your SD card. Etcher will automatically detect the card and you can simply continue by clicking on “Flash!”.
Attach all the cables to the Raspberry Pi, you can choose to use the SSH method or use a keyboard and monitor. I will be using the SSH method but all of the commands can be used with a monitor and keyboard as well.
SSH is disabled by default on the Raspbian images. To enable this either run
kalipi-configafter attaching the Pi to a screen and keyboard or place a file (without extension) called
sshinside the boot partition of the newly flashed SD card. (The Re4son Pi Kernel might have SSH enabled by default)
Preparing the system
All the physical preparations are done now, time to prepare the system itself!
Find the ip address of the Recon Pi:
# run ifconfig to find your own IP address. sudo nmap -sn 192.168.2.30/24 | grep -B 2 Pi
# Example output Nmap scan report for 192.168.2.16 Host is up (0.0014s latency). MAC Address: B8:27:EB:89:94:D8 (Raspberry Pi Foundation)
Login to the RPi with SSH:
# Replace the IP address with your own. ssh [email protected]
Default username and password for this image:
To install all the required tools follow the steps below:
git clone https://github.com/x1mdev/ReconPi.git
Navigate to the ReconPi directory:
Run the install script:
# Do NOT use sudo, it has issues with the creation of directories ./install.sh
Grab a cup of coffee, this will take a few minutes.
install.sh script is done it will execute a reboot command due to all the changes that have been made.
All tools are now configured and ready to go, you can log back in to run your first scan!
Run the script:
The script will run all the scans and you can just sit back and relax (again :D).
A dashboard will be started when the scan is done and the plan is to send scan results to the dashboard. This way you will be able to monitor your assets from your local network!
This is the initial setup and usage for the ReconPi. Please feel free to send in Pull Requests to contribute on https://github.com/x1mdev/ReconPi