Skip to content

ReconX Scan is an advanced network security toolkit. This tool helps security analysts, penetration testers and IT professionals perform essential network reconnaissance and security assessments.

License

Notifications You must be signed in to change notification settings

atharvbyadav/ReconX

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

85 Commits
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 

Repository files navigation

πŸ›‘οΈ ReconX β€” Network Reconnaissance Toolkit

Python Streamlit License Platform Status

Recon Type Security Tool UI GhostPath Contributions Welcome Maintenance


πŸ“Œ Overview

ReconX is a powerful, all-in-one network security reconnaissance toolkit built with a modern Streamlit web interface. Designed for penetration testers, ethical hackers, red teamers and cybersecurity enthusiasts, ReconX brings together essential active and passive recon techniques in one lightweight, interactive dashboard.

Whether you’re prepping for a CTF, conducting OSINT, scanning your own infrastructure or just learning the ropes, ReconX empowers you to explore and assess digital footprints β€” securely, silently and effectively.

πŸ”— Live Demo: ReconX Web App
πŸ“‚ Repository: ReconX GitHub
ReconX Banner

πŸš€ Features

1️⃣ Port Scanning

  • Multithreaded TCP port scanner (range: 1–500)
  • Detects open ports, grabs banners, highlights outdated services

2️⃣ OS Fingerprinting

  • Basic TCP handshake analysis to infer Linux/Unix vs Windows OS

3️⃣ WHOIS Lookup

  • Retrieves domain ownership and registrar information

4️⃣ Reverse DNS Lookup

  • Resolves IPs back to domain names (if records exist)

5️⃣ DNS Enumeration

  • Retrieves A, AAAA, MX, NS, CNAME, TXT records for a domain

6️⃣ GhostPath (Passive Recon)

  • Extracts subdomains via crt.sh
  • Gathers archived URLs via the Wayback Machine
  • Fully passive β€” no requests to target servers

🧠 Under the Hood

ReconX may look like a polished web app β€” and it is β€” but under the hood, it’s powered by a well-organized collection of recon logic packed efficiently into a single, maintainable Python script.

Instead of scattering logic across multiple files or scripts, all core functionalities β€” Port Scanning, OS Fingerprinting, WHOIS Lookup, DNS Enumeration, Reverse DNS and GhostPath β€” are implemented as individual Python classes within one main file.

This approach provides:

  • A clean, modular structure without file sprawl
  • Easier debugging β€” you only focus on the relevant class
  • Smooth onboarding for contributors or learners

🌐 Streamlit-Powered UI

The app’s interface is built with Streamlit, enabling a fast, reactive and browser-based frontend. Each recon class is wrapped in Streamlit UI components:

  • Text inputs for target domains/IPs
  • Buttons to trigger scans
  • Sections with expanders, tables and logs to display results

πŸ‘» Integrated GhostPath Engine

ReconX also embeds GhostPath, a passive reconnaissance engine that runs directly in the app. It consists of two internal classes:

  • GhostSubdomains: Fetches subdomains using crt.sh
  • GhostWayback: Gathers archived URLs from the Wayback Machine

These components operate quietly in the background, leaving no footprint on the target. They're perfect for stealthy reconnaissance workflows and OSINT-based enumeration.


πŸš€ Why This Architecture Works

  • βœ… All-in-one file means simpler code navigation and faster debugging
  • βœ… Class-based design provides modularity and clarity
  • βœ… Streamlit frontend offers interactivity without extra complexity
  • βœ… GhostPath integration brings passive recon into your active workflow

πŸ› οΈ Installation & Usage

Prerequisites

Ensure you have Python 3.x installed.

Clone the Repository

git clone https://github.com/atharvbyadav/ReconX.git
cd ReconX

Install Dependencies

pip install -r requirements.txt

Launch the App

streamlit run ReconX.py

πŸ“– Usage Guide

πŸ”Έ Port Scanning

Enter the Target IP, hit Scan and see open ports, banners and potential risks.

πŸ”Έ OS Fingerprinting

Enter an IP and run detection to infer the OS type.

πŸ”Έ WHOIS Lookup

Enter a domain or IP to view WHOIS data.

πŸ”Έ Reverse DNS Lookup

Reverse resolve an IP to any registered domain.

πŸ”Έ DNS Enumeration

Enter a domain name to pull DNS records.

πŸ”Έ GhostPath (Passive Recon)

Use crt.sh and Wayback Machine to uncover historical data and subdomains.


⚠️ Disclaimer

This tool is for educational and authorized security research purposes only. Scanning networks you don't own or lack permission to test is illegal.

Use responsibly. Stay ethical.


πŸ“œ License

This project is licensed under the BSD 3-Clause License. See the LICENSE file for full details.


🀝 Contributing

Contributions are welcome! Feel free to fork this repo, improve or expand features and open a pull request.

Have ideas? Open an issue or reach out via the contact links below.


πŸ“¬ Contact

"Collaboration is the backbone of innovation. Let’s build better tools together."


About

ReconX Scan is an advanced network security toolkit. This tool helps security analysts, penetration testers and IT professionals perform essential network reconnaissance and security assessments.

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages