Reconnaissance Modules

Modules for asset discovery and information gathering.

Reconnaissance Modules

These modules handle the initial phase of penetration testing - discovering and mapping target assets.

crtsh-dnssearcher

Performs subdomain discovery using certificate transparency logs.

z2e recon crtsh --domain example.com

Features:

Certificate transparency log parsing
Wildcard detection
Historical certificate analysis

wayback-recon-engine

Fetches historic page versions via Wayback Machine API.

z2e recon wayback --url example.com --years 5

Features:

Historical endpoint discovery
JavaScript file archaeology
Removed page detection

shodan-integration

Query Shodan for exposed services and infrastructure.

z2e recon shodan --query "hostname:example.com"

Features:

Service enumeration
Banner grabbing
Vulnerability correlation

github-leak-detector

Scans GitHub for leaked credentials and sensitive data.

z2e recon github --org example-org

Features:

Secret pattern matching
Commit history analysis
Fork and clone scanning

Next Steps

Vulnerability Modules

Modules Overview

Overview of Z2E's modular architecture.

Vulnerability Modules

Modules for vulnerability detection and verification.

On this page

Reconnaissance Modules crtsh-dnssearcher wayback-recon-engine shodan-integration github-leak-detector Next Steps