nahamsec / lazyrecon Goto Github PK

0 subdomains not working

I've been getting this everytime i try to use this tool.

i did ./install.sh and done install all. But failed to launch ./lazyrecon.sh (im using wsl kali)

Hi all, I am missing subdomains list in the final report. Anybody else facing the same issues?

██╗ █████╗ ███████╗██╗ ██╗██████╗ ███████╗ ██████╗ ██████╗ ███╗ ██╗
██║ ██╔══██╗╚══███╔╝╚██╗ ██╔╝██╔══██╗██╔════╝██╔════╝██╔═══██╗████╗ ██║
██║ ███████║ ███╔╝ ╚████╔╝ ██████╔╝█████╗ ██║ ██║ ██║██╔██╗ ██║
██║ ██╔══██║ ███╔╝ ╚██╔╝ ██╔══██╗██╔══╝ ██║ ██║ ██║██║╚██╗██║
███████╗██║ ██║███████╗ ██║ ██║ ██║███████╗╚██████╗╚██████╔╝██║ ╚████║
╚══════╝╚═╝ ╚═╝╚══════╝ ╚═╝ ╚═╝ ╚═╝╚══════╝ ╚═════╝ ╚═════╝ ╚═╝ ╚═══
v1.3 by @CaptMeelo

--==[ Setting things up ]==--

[+] Creating results directories...
[] /home/indira/LazyRecon/results/-d/subdomain
[] /home/indira/LazyRecon/results/-d/cors
[] /home/indira/LazyRecon/results/-d/ip
[] /home/indira/LazyRecon/results/-d/portscan
[] /home/indira/LazyRecon/results/-d/screenshot
[] /home/indira/LazyRecon/results/-d/directory

--==[ Enumerating subdomains ]==--

[+] Running Amass...
./LazyRecon.sh: line 68: /home/indira/go/bin/amass: No such file or directory

[+] Running subfinder...
./LazyRecon.sh: line 71: /home/indira/go/bin/subfinder: No such file or directory

[+] Combining subdomains...
[*] Check the list of subdomains at /home/indira/LazyRecon/results/-d/subdomain/final-subdomains.txt

--==[ Checking for subdomain takeovers ]==--

[+] Running subjack...
cat: /home/indira/LazyRecon/results/-d/subdomain/final-takeover.tmp: No such file or directory
rm: cannot remove '/home/indira/LazyRecon/results/-d/subdomain/final-takeover.tmp': No such file or directory
[*] Check subjack's result at /home/indira/LazyRecon/results/-d/subdomain/final-takeover.txt

--==[ Checking CORS configuration ]==--

[+] Running CORScanner...
python: can't open file '/home/indira/LazyRecon/tools/CORScanner/cors_scan.py': [Errno 2] No such file or directory
[*] Check the result at /home/indira/LazyRecon/results/-d/cors/final-cors.txt

--==[ Resolving IP addresses ]==--

[+] Running massdns...
./LazyRecon.sh: line 97: /home/indira/LazyRecon/tools/massdns/bin/massdns: No such file or directory
cat: /home/indira/LazyRecon/results/-d/ip/massdns.raw: No such file or directory
[*] Check the list of IP addresses at /home/indira/LazyRecon/results/-d/ip/final-ips.txt

--==[ Port-scanning targets ]==--

[+] Running masscan...
[sudo] password for indira:
sudo: /home/indira/LazyRecon/tools/masscan/bin/masscan: command not found
warning: failed to load external entity "/home/indira/LazyRecon/tools/nmap-bootstrap.xsl"
cannot parse /home/indira/LazyRecon/tools/nmap-bootstrap.xsl
cat: /home/indira/LazyRecon/results/-d/portscan/masscan.xml: No such file or directory
[*] Masscan Done! View the HTML report at /home/indira/LazyRecon/results/-d/portscan/final-masscan.html

[+] Running nmap...
Starting Nmap 7.80 ( https://nmap.org ) at 2020-04-29 19:34 EDT
Error #486: Your port specifications are illegal. Example of proper form: "-100,200-1024,T:3000-4000,U:60000-"
QUITTING!
compilation error: file /home/indira/LazyRecon/results/-d/portscan/nmap.xml line 1 element nmaprun
xsltParseStylesheetProcess : document is not a stylesheet
[*] Nmap Done! View the HTML report at /home/indira/LazyRecon/results/-d/portscan/final-nmap.html

--==[ Taking screenshots ]==--

[+] Running aquatone...
Failed to create required directory /home/indira/LazyRecon/results/-d/screenshot/aquatone/headers
[*] Check the result at /home/indira/LazyRecon/results/-d/screenshot/aquatone/aquatone_report.html

--==[ Bruteforcing directories ]==--

[+] Running dirsearch...
[]Creating output directory...
mkdir: cannot create directory ‘/home/indira/LazyRecon/results/-d/directory/dirsearch’: No space left on device
cat: /home/indira/LazyRecon/results/-d/screenshot/aquatone/aquatone_urls.txt: No such file or directory
[] Check the results at /home/indira/LazyRecon/results/-d/directory/dirsearch/

--==[ DONE ]==--
indira@kali:~/LazyRecon$

hey nahamsec love the tool having a issue on where to put the all.txt wordlist i am getting this issue

Error sending: Operation not permitted
Starting Massdns Subdomain discovery this may take a while
Traceback (most recent call last):
File "/root/massdns/scripts/subbrute.py", line 8, in
for lines in open(sys.argv[1]):
IOError: [Errno 2] No such file or directory: './all.txt'

i dont know where am supposed to put the all.txt wordlist

When you enter a domain like this:
Sh lazyrecon.sh -d \" && ls
It will execute the command

stuck at massdns step. ran it for more than 20 hours still the same.
it had a issue before where after complete scan when you open master report.html you see no urls in that report.
like the urls which shows you directory search results. t

my pc is a beast and i have tried doing it in vbox,vmware, kali subsytem, ubuntu subsystem, and now finally tried 10 times in kali dual boot in seperate ssd.
please help and fix this. the script is really nice to automate when i sleep.

When I run lazyrecon.sh, it hangs at "Checking http://crt.sh" and won't proceed with the rest of the script. I've tried it on several different domains. Any idea what this issue would be? Thanks for the help in advance.

is there a way that I can make use of the tool for an existing set of subdomains that I have.

thanks

Hi mate,

It would be nice to integrate amass for recon as well :)

right after sublist3r_>

amass enum -min-for-recursive 1 -noalts -d $domain -v -o ./$domain/$foldername/$domain.txt > /dev/null

when I run the code "./lazyrecon.sh -d abc.com", it return "mkdir: command not found"

please tell me how to fix it?

anyone know what is jq command in lazyrecon?
i get this error always
Listing subdomains using sublister...
Checking certspotter...
./lazyrecon.sh: line 116: jq: command not found

thanks.

mass(){
~/tools/massdns/scripts/subbrute.py $massdnsWordlist $domain | ~/tools/massdns/bin/massdns -r ~/tools/massdns/lists/resolvers.txt -t A -q -o S | grep -v 142.54.173.92 > ./$domain/$foldername/mass.txt
}

I think python keyword must b preset in order to start subbrute.py

I recommend to add Spyse to/instead sublist3r. it probably will increase the speed of collecting subdomains

New lazyrecon are complaning to that aquatone is missing,

but it is not in the install script.

Hi
It would be great if you add the support for the remaining tools in BBHT.

Currently only 3 tools are in use webscreenshot.py,sublist3r.py,dirsearch.py.

Thank you

Hi, will you please help me I am getting a error saying this
jq: error (at :0): Cannot index string with string "dns_names"

Hello I am facing a issue

` _ ____ ____ ___ _ ____ _____ ____ ____ _
/ \ / _ /_ \ /// / // / _ / \ /|
| | | / | / / \ / | /|| \ | / | / || |\ ||
| |/| |-||/ / / / | /| / | _| _/|| | ||
_/_/ |_/// _/_\\/__/_/ |

This is a known target.
Recon started on .com
Listing subdomains using sublister...
Checking certspotter...
Checking http://crt.sh
Starting Massdns Subdomain discovery this may take a while
Massdns finished...
Started dns records check...
Looking into CNAME Records...
Check the following domain for NS takeover: cds.*.com. CNAME ***.amazonaws.com.
Check the following domain for NS takeover: MI..com. CNAME **********.amazonaws.com.
Excluding domains (if you set them with -e)...
Subdomains that have been excluded from discovery:

Starting discovery...
Probing for live hosts...
cat: ./*****.com/recon-2021-01-31/urllist.txt: No such file or directory
Total of 1 live subdomains were found
Starting aquatone scan...
Chrome path /snap/bin/chromium does not exist
Scraping wayback for data...
Wordlist saved to /******8.com/recon-2021-01-31/wayback-data/paramlist.txt
Starting dirsearch...
wc: /home/kali/tools/dirsearch/reports///: Is a directory
Host discovery disabled (-Pn). All addresses will be marked 'up' and scan times will be slower.
Scan for *****.com finished successfully
Scan completed in : 7 minutes and 10 seconds.`

dirsearch code is having problem i checked it in lazyrecon.sh

it is showing /tools/dirsearch/reports/$something/$something/

but when the code is running it shows
wc: /home/kali/tools/dirsearch/reports///: Is a directory

This happens no matter the domain I scan.

Recon started on xxx.com
Listing subdomains using sublister...
Checking certspotter...
Checking http://crt.sh
Starting Massdns Subdomain discovery this may take a while
Massdns finished...
Started dns records check...
Looking into CNAME Records...
Excluding domains (if you set them with -e)...
Subdomains that have been excluded from discovery:

Starting discovery...
Probing for live hosts...
cat: ./xxx/recon-2021-02-05/urllist.txt: No such file or directory
Total of 1 live subdomains were found
Starting aquatone scan...
No targets found in input.
Scraping wayback for data...
Wordlist saved to /xxxx/recon-2021-02-05/wayback-data/paramlist.txt
Starting dirsearch...
wc: /root/tools/dirsearch/reports//: Is a directory
Host discovery disabled (-Pn). All addresses will be marked 'up' and scan times will be slower.
Scan for xxx.com finished successfully
Scan completed in : 244 minutes and 45 seconds.

I got the following errors:

./lazyrecon.sh: line 74: httprobe: command not found
./lazyrecon.sh: line 49: waybackurls: command not found
./lazyrecon.sh: line 50: unfurl: command not found

The other tools are working perfectly, so It seems to be a problem related to the go installation.
Any hints?

Aquatone is installed, chromium is installed and in the right spot. For some reason when it gets to the aquatone part I get this. (i removed the domains im testing and put xx lol).

Starting aquatone scan...
http://xx: request timeout
https://xx: request timeout
https://xx: request timeout
http://xx: request timeout
http://xx: request timeout
http://xx: screenshot timed out
http://xx: screenshot timed out
http://xx: screenshot timed out
client_loop: send disconnect: Broken pipe

I feel like this has something to do with chromium, but chromium is installed and in the right spot, but I feel like its not launching for some reason. I am using it in a kali linux VPS.

getting error saying
jq: error (at :0): Cannot iterate over null (null)

any help for the problem

As many tools already in kali linux with default path for the applications and when we run the tools it's showing errors due to the custom location.

Due to some recent changes in lazyrecon, in my each iteration of scan, aquatone doesn't run. This is due to the reason that urllist.txt file is not being populated. I get this error on the fresh installations of lazyrecon on ec2.

I tried with re-installing and the same error persists on different machines.

Hello guys, I am constantly encountering the following error:

Listing subdomains using sublister...
Checking certspotter...
jq: error (at <stdin>:0): Cannot index string with string "dns_names"
Checking http://crt.sh

I'm using Ubuntu at Linode

Linux localhost 4.15.0-72-generic #81-Ubuntu SMP Tue Nov 26 12:20:02 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux

Thank you in advance :)

hey nahamsec your tool is awesome. i love your tool. but in latest update when i run your tool or when massdns scan is start my internet is stop. even i check in different os and network. i face same issu or when i skip massdns then other tool like aquatone and dirsearch and waybackurl not worked how to fix this issu? and thanks for amazing tool.