Red Hawk: Information Gatherer & Vulnerability Scanner


Red Hawk: Information Gatherer & Vulnerability Scanner

Red Hawk is an all in one information gatherer which allows the user to find critical information about any website such as the IP address, CMS, DNS and Cloudflare presence. Red Hawk consists of 13 modules which range in functions from gathering basic information to detecting vulnerabilities. Therefore, Red Hawk is an essential tool for any respectable penetration tester.

RED HAWK logo

Red Hawk: All in one tool for Information Gathering, Vulnerability Scanning & Crawling

Red Hawk only requires two inputs from the user, the URL of the target and whether the target has HTTP or HTTPS protocol. After this, the user can select from 13 different options which will return the desired information. This information can range from the most basic such as IP address and site title to more advanced information such as the number and status of ports. A WordPress vulnerability scanner is also included which checks if an outdated version of WordPress is running and what vulnerabilities are present in that version.

Features:

  • Extract information about information
  • Find GEO-location of target
  • Check CMS of target
  • Subdomain scanner is also included
  • Easy to use

Tools Inside (Scans):

– Basic Recon (Site Title, IP Address, CMS, Cloudflare Detection, Robots.txt Scanner)
– Whois Lookup
– Geo-IP Lookup
– Grab Banners
– DNS Lookup
– Subnet Calculator
– NMAP Port Scan
– Subdomain Scanner
– Reverse IP Lookup & CMS Detection
– SQLi Scanner (Finds Links With Parameter And Scans For Error Based SQLi)
– Bloggers View (Information That Bloggers Might Be Interested In)
– WordPress Scan (Only If The Target Site Runs On WP)
– Crawler
– MX Lookup

Supported Platforms:

  • Linux

Requirements:

  • Specific modules (installed automatically)

Red Hawk Install

Clone the GitHub repo:

$ git clone https://github.com/Tuhinshubhra/RED_HAWK.git 

That’s All!

Usage

Enter the following commands:

$ cd RED_HAWK
$ php RED_HAWK
All In One Tool For Information Gathering And Vulnerability Scanning
                                                              .  .  .  .
                                                              .  |  |  .
                                                           .  |        |  .
                                                           .              .
                                              @@@@@      . |  (\.|\/|./)  | .   ___   ____
  ██████╗ ███████╗██████╗    ###     ###    @@@@ @@@@    .   (\ |||||| /)   .  |   | /   /
  ██╔══██╗██╔════╝██╔══██╗   ###     ###   @@@@   @@@@   |  (\  |/  \|  /)  |  |   |/   /
  ██████╔╝█████╗  ██║  ██║   ###########   @@@@@@@@@@@     (\             )    |       /
  ██╔══██╗██╔══╝  ██║  ██║   ###########   @@@@@@@@@@@    (\  Ver  2.0.0  /)   |       \
  ██║  ██║███████╗██████╔╝   ###     ###   @@@     @@@     \      \/      /    |   |\   \
  ╚═╝  ╚═╝╚══════╝╚═════╝    ###     ###   @@@     @@@      \____/\/\____/     |___| \___\
                                                                |0\/0|
         {C} Coded By - R3D#@X0R_2H1N A.K.A Tuhinshubhra         \/\/
                                                                  \/  [$] Shout Out - You ;)
 
  
 
[#] Enter The Website You Want To Scan : cyberpunk.rs

Usage Example

      +--------------------------------------------------------------+
      +                  List Of Scans Or Actions                    +
      +--------------------------------------------------------------+
 
             Scanning Site : https://cyberpunk.rs
      
 
[0]  Basic Recon (Site Title, IP Address, CMS, Cloudflare Detection, Robots.txt Scanner) 
[1]  Whois Lookup 
[2]  Geo-IP Lookup 
[3]  Grab Banners 
[4]  DNS Lookup 
[5]  Subnet Calculator 
[6]  NMAP Port Scan 
[7]  Subdomain Scanner 
[8]  Reverse IP Lookup & CMS Detection 
[9]  SQLi Scanner (Finds Links With Parameter And Scans For Error Based SQLi) 
[10] Bloggers View (Information That Bloggers Might Be Interested In) 
[11] WordPress Scan (Only If The Target Site Runs On WP) 
[12] Crawler 
[13] MX Lookup 
[A]  Scan For Everything - (The Old Lame Scanner) 
[F]  Fix (Checks For Required Modules and Installs Missing Ones) 
[U]  Check For Updates 
[B]  Scan Another Website (Back To Site Selection) 
[Q]  Quit! 
 
[#] Choose Any Scan OR Action From The Above List: 1
 
[+] Scanning Begins ... 
[i] Scanning Site: https://cyberpunk.rs 
[S] Scan Type : WHOIS Lookup
[~] Whois Lookup Result: 
 
   Domain Name: CYBERPUNK.RS
   Registry Domain ID: 132345516_DOMAIN_NET-VRSN
   Registrar WHOIS Server: whois.domain.com
   Registrar URL: http://www.domain.com
   Updated Date: 2019-09-25T14:22:07Z
   Creation Date: 2004-10-10T09:30:30Z
   Registry Expiry Date: 2020-10-10T09:30:30Z
   Registrar: Domain.com, LLC
   Registrar IANA ID: 886
   Registrar Abuse Contact Email: compliance@domain-inc.net
   Registrar Abuse Contact Phone: 602-226-2389
   Domain Status: ok https://icann.org/epp#ok
   Name Server: NS1.NIMBUSHOSTING.CO.UK
   Name Server: NS2.NIMBUSHOSTING.CO.UK
   Name Server: NS3.NIMBUSHOSTING.CO.UK
   DNSSEC: unsigned
   URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of whois database: 2020-04-21T16:22:40Z <<<
 
For more information on Whois status codes, please visit https://icann.org/epp
 
The Registry database contains ONLY .COM, .NET, .EDU domains and
Registrars.
 
[*] Scanning Complete. Press Enter To Continue OR CTRL + C To Stop
Documentation Box
Download Box