EclipseRecon is an educational web reconnaissance tool developed as a practical exercise during a cybersecurity training course. π§ π΅οΈββοΈ Its main objective is to help learners understand how information gathering works in the context of ethical hacking and web application security. Through this project, key concepts such as subdomain enumeration, vulnerability discovery, and structural mapping of websites were explored in a hands-on manner. π»π
By applying real-world techniques in a controlled and legal environment, EclipseRecon provides an opportunity to reinforce theoretical knowledge with practical skills. Whether you're a student preparing for a role in cybersecurity or simply exploring ethical hacking practices, this tool aims to support your learning journey and deepen your understanding of how to assess and protect web environments. ππ
π I would like to express my sincere gratitude to Santiago HernΓ‘ndez, a leading expert in Cybersecurity and Artificial Intelligence. His outstanding course on Cybersecurity and Ethical Hacking, available on Udemy, was instrumental in the development of this project. The insights and techniques I gained from his course were invaluable in guiding my approach to cybersecurity practices. Thank you for sharing your knowledge and expertise!
β οΈ Disclaimer: This tool is intended for ethical hacking and educational purposes only. Always ensure you have authorization before testing any systems.
β οΈ All tests and security analysis workflows in EclipseRecon were conducted in a controlled environment using deliberately vulnerable websites based on the VPLE (Vulnerable Web Platform for Learning and Exploitation) virtual machine, which is designed specifically for security testing and training purposes. This testing was carried out in a dedicated lab environment to ensure ethical use and avoid unauthorized access to any external systems. The results of these tests demonstrate the toolβs effectiveness in identifying vulnerabilities in a controlled, safe, and legal environment.
EclipseRecon was developed as a practical project during a cybersecurity course to reinforce web reconnaissance techniques through hands-on experience. It aims to help students and aspiring ethical hackers learn how to:
- π΅οΈββοΈ Discover Hidden Subdomains: Practice subdomain enumeration to reveal potential entry points.
- π Scan for Vulnerabilities: Identify common weaknesses that could affect web security.
- π Crawl Websites: Understand website structure by mapping and analyzing content.
- π¨ OWASP-Compliant Security Analysis: Perform basic assessments aligned with OWASP guidelines.
- π Generate Comprehensive Reports: Practice creating PDF and JSON reports to document findings.
This tool combines several reconnaissance methods into one educational platform, making it easier to learn how different techniques work together during a security assessment.
- π Subdomain Scanning: Gain visibility into a siteβs subdomain landscape.
- π§ Vulnerability Analysis: Learn to detect common issues in web applications.
- π§ Website Crawling: Build sitemaps and extract page data to better understand web architecture.
- π OWASP Testing: Get familiar with the OWASP testing methodology through guided scans.
- π Detailed Reporting: Export structured results in PDF and JSON formats for review and learning.
To run EclipseRecon, make sure you have the following dependencies installed:
- π Python 3.8+: Required for running EclipseRecon scripts and managing dependencies.
- π colorama==0.4.6: Used for adding colored output to the console for better readability.
- π dnspython==2.7.0: DNS toolkit for subdomain scanning and resolution.
- β³ tqdm==4.67.1: Progress bar for tracking scanning and crawling processes.
- π aiohttp==3.11.9: HTTP client/server library for asynchronous web crawling and scanning.
- π pyvis==0.3.2: Visualization library for creating interactive network graphs of subdomains and vulnerabilities.
- πΈοΈ scrapy==2.12.0: Web scraping framework for crawling websites and generating sitemaps.
- π zaproxy==0.3.2: Used for automated vulnerability scanning and OWASP-compliant security testing.
- ποΈ python-dotenv==1.0.1: For managing environment variables, particularly for proxy settings.
- π§ langchain==0.2.16: For handling advanced language models and AI-based security analysis.
- π€ langchain-groq==0.1.10: Integration with Groq's AI model for cloud-based processing.
- π fpdf2==2.8.1: Library for generating PDF reports from scan results.
- 𧩠langchain-community==0.2.13: For enhanced community-driven features in LangChain.
- π§ langchain-huggingface==0.0.3: For integrating HuggingFace embeddings into the security analysis workflow.
- π faiss-cpu==1.9.0: For performing efficient similarity search and retrieval in the analysis process.
Make sure to install these dependencies using pip install -r requirements.txt to get started!
EclipseRecon was developed as part of a learning process to explore real-world web reconnaissance techniques. While itβs not intended for production use, it offers practical value in educational and training contexts such as:
- π‘οΈ Penetration Testing Practice: Simulate asset enumeration and identify common weaknesses in lab environments to understand the core phases of a penetration test.
- πͺ² Bug Bounty Simulations: Practice participating in bug bounty programs by learning how to identify hidden entry points, subdomains, and potential vulnerabilities in controlled scenarios.
- π Security Auditing Training: Gain experience in mapping an organization's digital footprint and documenting findings through structured reports.
- β Compliance Familiarization: Apply OWASP-based checks to understand how security standards work in practice and what it means to align assessments with industry-recognized frameworks.
This project is ideal for students, ethical hacking enthusiasts, and anyone learning how to responsibly conduct reconnaissance and vulnerability discovery in a safe, hands-on way. π
Hereβs a step-by-step breakdown of what EclipseRecon does:
- π§ Initialization:
- Validates the target (IP address or domain).
- Configures proxies and scanning depth.
- π Subdomain Scanning:
- Discovers subdomains using the
SubdomainScannermodule. - Outputs a list of discovered subdomains.
- Discovers subdomains using the
- π§ Vulnerability Scanning:
- Scans discovered subdomains or the target for vulnerabilities.
- Leverages the
WebVulnerabilityScannerto find potential risks.
- π·οΈ Website Crawling:
- Generates sitemaps by crawling websites or subdomains.
- Uses the
WebsiteSpiderto map the site structure.
- π‘οΈ OWASP Analysis:
- Performs OWASP security checks on targets.
- Uses the
OwaspSecurityScannerfor detailed testing.
- π Report Generation:
- Compiles results into PDF and JSON reports.
- Uses the
SecurityAnalyzerto generate professional-grade reports.
EclipseRecon is a powerful tool for reconnaissance and security analysis of websites and IP addresses. Below is a breakdown of the available options for the command-line interface (CLI).
Description: The target domain or IP address that you want to scan. This is a required argument and must be provided.
Description: Set the depth of the subdomain scanning. You can choose from the following options:
test: Basic scan for subdomains.basic: A deeper scan thantest, but not as extensive.normal: A balanced scan (default).deep: Full-depth scan for all possible subdomains.
Default: normal
Description: Enable scanning of IPv6 addresses (default is IPv4). Use this option if you want to scan for IPv6 addresses.
Description: Define the number of threads to use for scanning. More threads will speed up the process but may consume more resources.
Default: 10
Description: Set a proxy for the OWASP security scanner to route traffic through a proxy server (e.g., for anonymity or bypassing firewalls).
Description: Path to save the PDF security report. If not specified, the report will be saved with the default name security_report.pdf.
Description: Path to save the JSON security report. If not specified, the report will be saved with the default name security_report.json.
Description: Displays the version of EclipseRecon.
| Option | Description | Default |
|---|---|---|
--target |
The target domain or IP address to scan. | Required |
--scan_depth |
Subdomain scan depth: test, basic, normal, deep. |
normal |
--ipv6 |
Enable IPv6 scanning (optional). | Disabled |
--threads |
Number of threads for scanning (default is 10). | 10 |
--proxies |
Proxy settings for the OWASP scanner. | None |
--pdf_report |
Path to save the PDF security report. | security_report.pdf |
--json_report |
Path to save the JSON security report. | security_report.json |
--version |
Displays the version of EclipseRecon. | None |
Now you can use these options to scan websites or IP addresses for vulnerabilities, subdomains, OWASP security issues, and more. π
EclipseRecon was developed exclusively for educational and research purposes as part of my cybersecurity learning journey. This project serves as a practical application of the techniques acquired during my ethical hacking training, allowing me to experiment in a controlled environment and showcase my cybersecurity portfolio.
This tool is intended only for ethical security assessments and authorized penetration testing. It must never be used on systems without explicit permission from the owner.
All testing conducted with EclipseRecon was performed in a dedicated cybersecurity lab environment using deliberately vulnerable systems, such as the VPLE (Vulnerable Web Platform for Learning and Exploitation) virtual machine, which is designed for security research and training purposes.
Any unauthorized use of EclipseRecon to scan, enumerate, or exploit real-world systems without proper authorization is illegal.
I disclaim any responsibility for misuse of this tool. Users must ensure they operate within legal and ethical boundaries at all times.
π I would like to express my sincere gratitude to Santiago HernΓ‘ndez, a leading expert in Cybersecurity and Artificial Intelligence. His outstanding course on Cybersecurity and Ethical Hacking, available on Udemy, was instrumental in the development of this project. The insights and techniques I gained from his course were invaluable in guiding my approach to cybersecurity practices. Thank you for sharing your knowledge and expertise!
EclipseRecon extends its gratitude to the creators and maintainers of the SecLists repository. SecLists has been an invaluable resource for security practitioners, offering an extensive collection of lists, including usernames, passwords, sensitive data patterns, fuzzing payloads, and subdomain dictionaries. These resources have significantly contributed to the capabilities of EclipseRecon, particularly in tasks such as fuzzing and subdomain scanning.
Special thanks to Daniel Miessler, Jason Haddix, and g0tmi1k for their dedication to maintaining and expanding this essential tool for the cybersecurity community. Your work empowers ethical hackers and security analysts worldwide to perform more efficient and comprehensive assessments. π
Contributions to EclipseRecon are highly encouraged! If you're interested in adding new features, resolving bugs, or enhancing the project's functionality, please feel free to submit pull requests.
EclipseRecon is developed and maintained by Sergio SΓ‘nchez SΓ‘nchez (Dream Software). Special thanks to the open-source community and the contributors who have made this project possible. If you have any questions, feedback, or suggestions, feel free to reach out at [email protected].
This project is licensed under the MIT License, an open-source software license that allows developers to freely use, copy, modify, and distribute the software. π οΈ This includes use in both personal and commercial projects, with the only requirement being that the original copyright notice is retained. π
Please note the following limitations:
- The software is provided "as is", without any warranties, express or implied. π«π‘οΈ
- If you distribute the software, whether in original or modified form, you must include the original copyright notice and license. π
- The license allows for commercial use, but you cannot claim ownership over the software itself. π·οΈ
The goal of this license is to maximize freedom for developers while maintaining recognition for the original creators.
MIT License
Copyright (c) 2024 Dream software - Sergio SΓ‘nchez
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.