tuhinshubhra / red_hawk Goto Github PK
View Code? Open in Web Editor NEWAll in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers
License: MIT License
All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers
License: MIT License
php rhawk.php
Could not open input file: rhawk.php
Firstly, Grats on the program, as much as I hate PHP yourve done a ok job, incredibly similar to my Python "V3n0m-Scanner", gotta be the first one ive seen on Github thats got the same "All in one Scanner" idea :)
So you know the Cloudflare resolving can be enhanced alot, you could also easily adapt it to also work on blazingfast.io protected websites aswell ๐
Well done on the "Fix"/"Recovery" option aswell :') Great minds and all ;0
I was curious as to why the SQLi scanning was so lacklustre though? are you planning on expanding it or not going to bother?
Curious as to wether or not you plan to add any of the following: XSS Detection, SSI Vulns, LFI/RFI -> RCE vulns, CSRF and/or CSRF-Bounce attack detection?
If your willing or would like to Collab on features or help on each others tools in whatever way we can even constructive feedback, well, thatd be fine by me :)
How comes you went for PHP not Python3 though?
Take care mate :)
just a tool the messed with differ system and php coding and also not giiving any vulenarable reasult
hope to developer should improve allthought it is a nice light tool but something messed up
@Tuhinshubhra It's nice tool for information gathering. But i was disappointed that when i scan an website SQL Scanner Not work. Is it work as SQL Map or not?.
Please Add scanner for XSS,XSRF Vulnerability ,if it possible.
Fuck Bro
In order to scan individual person..what to use....Facebook ID. Com. Email address.com ..zoom address .com...or jus username?? how to use INSTEAD of a website ?? And do I need to ROOT?? Doesn't say .OBVIOUSLY A BEGINNER....thank u so much for ur [email protected]
When I type in 0 in app or A for all every time it gets to Robots File it shows,
โ(info) Robots File: root@kali:~RED_HAWK# โ
I let it sit for about 10 mins or so and nothing happens. So I hit the minize button and went back in and after the # it shows the blinking box like I need to type?
Scanner Stops Working After Cloudflare Detection even though i have install php-curl and php-xml
any help
I git cloned it cd'd into it and ran php rhawk.php what do i need to install for PHP?
Hi,
scanner not scanning full website at Robots File: its stuck....or am i missing any plugin? please help...
I am receiving the error: "error valid key required" when executing a few of the functions, i.e. nmap port scans, subdomain scans, OSINT, etc. I cloned the program and ran it in a few different environments/distros with the same result.
This is a great tool. I look forward to future features. Would it be possible to add a bulk lookup feature that would output the data to a CSV file?
When I selected "Reverse IP Lookup & CMS Detection" this program closes immediately. Also there is a problem with "Basic Recon", "SQLi Scanner", "Bloggers View", "Crawler" options. Can you please solve this problems?
[11] WordPress Scan (Only If The Target Site Runs On WP)
[12] Crawler
[13] MX Lookup
[A] Scan For Everything - (The Old Lame Scanner)
[F] Fix (Checks For Required Modules and Installs Missing Ones)
[U] Check For Updates
[B] Scan Another Website (Back To Site Selection)
[Q] Quit!
[#] Choose Any Scan OR Action From The Above List: fix
[!] Invalid Input! Please Enter a Valid Option!
[#] Choose Any Scan OR Action From The Above List: F
root@supersecretkali:~/red_hawk#
This also happens with a lowercase f
It has been long time, i need an update.
I think RedHawk is using some api from hackertarget.com, a paid scanner service at https://hackertarget.com/about/, right?
I'm develop a web application project(https://vnshares.com/) with RedHawk but get a limited api call at: https://hackertarget.com/scan-membership/. Can you explain and suggest me about this limited.
I was analyzing a Brazilian government website, and when I clicked to show the GeoIP, the coordinates took me to a lake in the United States
I don't understand this problem
Hacker Target added api outh key for using nmap and whois lookup please use any another API
Frankly, I love this tool but I find it so limited by the fact it's interactive.
That would be so much simpler if we could just define options as variables before executing it, so that we could run scans in scripts and store results in files.
At the moment, the only solution for this is to use pipes |, echo and wait instructions but that's really unconvenient.
Tell me what you think !
Hello author I have created version that has the wordpress User Enum Function but I'm unable to get the code You wrote to run even though my module alone does work . I'm going to make a pull if You find any issues can You clear them up, and add the code to a spot in the code you like if this isn't sufficient for You.
Hi,
I don't know if it happens to me only, but could you update the video?
Thanks.
When git cloning into RED_HAWK using termux it asks for a username and password then fails the authentication if not provided
I've never had this happen before
Thank you for your work
KrTKl909
When i use nmap port scan it show ''error valid key required '' and when i use whois lookup it show limit reached .please help
When We Add Website In HTTP form Like www.xxx.com Nmap Is Work And Scanning Ports
But When We Add Simple IP Like 10.10.10.102 Other Ifo We Get But Nmap Say Need Host
ูุง
Originally posted by @hatem0909 in #43 (comment)
No doubt thats a Great Tool for recon :) Just a Little suggestion try adding something like that saves the output in a File :) For scanning everything ;)
As mentioned in the Description i used fix
to install php-curl and php-xml but the code when restarted does not recognize these modules as installed and crashes every time we do a search
Just wanted to give you a heads up that the API for v2 is dead since last year and now we need API v3 with a token.
Thanks for the versatile script.
Currently, I have to manually add the results to a file or other tools for further analysis.
The script I'm using was included with the LazyScript.
Thank You
Donations coming soon ;)
It is asking for username and password. What is the username and password?
So far all options work well with RED_HAWK except [9] and [10], as soon as I select the option, it completes and exists the program so I have to reopen and type in everything again to resume scanning/enumerating.
U build A great tool but ,
When i load in termux segmentation error show
& also not scan vuln variable of site properly
When i use the whois lookup i get the message "API count exceeded - Increase Quota with Membership". Any tips on why this is happening?
i was stuck at..
git clone https://github.com/Tuhinshubhra/RED_HAW Cloning into 'RED_HAW'...
Username for 'https://github.com': Epencepe
Password for 'https://[email protected]':
remote: Repository not found.
fatal: repository 'https://github.com/Tuhinshubhra/RED_HAW/' not found
how yo fix it.. please help me
Create a Dockerfile to make a Docker version.
Nice
Bang hack fb gimana
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.