ReconFTW v4 Security Tool Released with Major Updates
The open-source security tool ReconFTW has been updated to version 4, featuring major refactoring and modular pipelines. The new version, aimed at security and recon developers, includes improved DNS handling and new CI/CD integrations for automated security assessments. A detailed changelog outlines the specific improvements and new features.
- The creator of ReconFTW, "six2dez," is an ethical hacker and a proponent of open-source software. Beyond ReconFTW, six2dez has contributed to the cybersecurity community with other tools like a Google Dorks search tool and guides for certifications like the OSCP. - ReconFTW is fundamentally a framework that automates and integrates a collection of other well-regarded security tools. For instance, in its subdomain enumeration phase, it can utilize tools such as Subfinder, Amass, and Assetfinder. - The tool is designed with a modular architecture, with the main script sourcing functionalities from eight specialized modules. This structure allows for more maintainable code and the ability to run independent functions in parallel for faster scans. - For performance-intensive tasks like subdomain bruteforcing that can generate significant DNS traffic, ReconFTW integrates with the Axiom framework. This allows for the distribution of scans across multiple cloud instances, which can speed up execution and reduce the risk of IP-based blocking. - A key configuration file, `reconftw.cfg`, allows users to extensively customize the tool's behavior. Through this file, users can manage everything from API keys for various services to enabling or disabling specific scanning modules and adjusting performance settings like threads and rate limits. - In a previous version, a vulnerability (CVE-2023-46117) was identified where inadequate validation of retrieved subdomains could have led to remote code execution. This vulnerability was addressed in version 2.7.1.1. - The tool includes features for Open Source Intelligence (OSINT) gathering, which involves collecting information from publicly available sources. This can include searching for leaked email addresses and credentials, extracting metadata from documents, and analyzing public GitHub repositories for sensitive information. - To keep users informed of scan progress and results, ReconFTW supports sending notifications through platforms like Slack, Discord, and Telegram. This feature is configured through the `reconftw.cfg` file and allows for real-time updates without needing to constantly monitor the tool's output.
