Skip to content

7. FAQs

Jump to bottom
Jinay Patel edited this page May 16, 2021 · 9 revisions

Installation

Installer script shows some tools not installed in red colour
  • When the installer script shows something like the below image, that means that particular tool wasn't installed due to some reasons.
  • In such a case, its recommended you manually install the tool, so that you don't face any issues further.
fix34
How do you update reconFTW and all its tools all at once ?
  • The install.sh is both installer and updater script.
  • When you run install.sh first it will check whether any newer version of reconftw is available and update itself automatically.
  • Later on it will update all the tools and the repositories.
./install.sh

Usage

The scan kills/blow ups up my home wifi
  • This generally occurs during the subdomain enumeration part(Bruteforce subdomain enumeration).
  • This is due to massdns which generates a huge amount of traffic by concurrently requesting the public resolvers.
  • To overcome this you can make changes in the reconftw.cfg config file.
  • Set the value between 2000-10000 as per your needs.
PUREDNS_PUBLIC_LIMIT=2000
The scan feels stuck at a particular step

If you feel a scan seem to stuck on a particular step you can 2 things:-

1. Check the logs
Your target out folder (reconftw/Recon/target.com) contains a hidden directory called .logs.
This directory contains the logs from reconftw in real time.

cd .log/
tail -f logfile.txt

Now you can see in verbose mode all the execution of reconftw in real-time.

2. Skip the step
To skip a particular step you can do it through the reconftw.cfg config file.
Stop the scan by long pressing ctrl+c.
Now navigate to the config and set the value to a particular function to false
Eg:- You want to disable directory fuzzing since it's taking too long.

FUZZ=false
Google Dorking doesn't return results
  • When you perform some suspicious queries on google, it thinks that it's coming from some automated tool.
  • Thus, google will ask for CAPTCHA, to verify that you are a legit person querying.
  • Hence, if you have run Google Dorks 2-3 times the next time you won't get the results, as Google has blocked the answer in return and asking for CAPTCHA.

Features

How to setup/recieve notifications about the ongoing scan
  • To use notifications you must first enable it through the reconftw.cfg config file.
NOTIFICATION=true
  • ReconFTW uses notify tool in order to send updates about the ongoing scans.
  • So in order to set up notifications, you need to configure the notify config file $HOME/.config/notify/notify.conf first.

1)Configure Discord notifications

  • First, you need to make your own server and then create a webhook.
  • Now give a name and copy the webhook URL.

fix41

  • Now we have to configure the notify config file.
  • Rember to uncomment the lines before modifying the parameters.

fix42



2)Configure Telegram notifications

  • Open your telegram and search @BotFather

Copy-of-Copy-of-Untitled-2

  • Message him /start, this will give back a list of options.
  • Our concern is to make a new bot, so message him /newbot.
  • Now select the set a bot name and a unique bot_username.
  • Now we get assigned a unique address for our bot. ( Eg:- t.me/reconftw_bot ) and an api key.
  • The next step is to get the chat-id.
  • Visit this
https://api.telegram.org/bot<Your_Api_Key>/getupdates
  • Now message your bot anything by clicking on the link BotFather provided you (Eg:- t.me/reconftw_bot).
  • Now refresh the page and you will see a chat object.
  • There you will see the id parameter. Copy the chat-id.
  • Now let's go the notify config file located at $HOME/.config/notify/notify.conf
  • Now uncomment and fill the required parameters.
  • Done !!!

fix46

Clone this wiki locally