FinalRecon Command Guide

FinalRecon is an all-in-one OSINT tool for web reconnaissance. It aggregates headers, SSL info, whois, and crawling.

Top 10 Useful Commands

1. Full Scan

python3 finalrecon.py --url http://example.com --full

Explanation: Runs all available modules (Header, SSL, Whois, Crawl, DNS).

2. Headers Only

python3 finalrecon.py --url http://example.com --headers

Explanation: Checks HTTP security headers.

3. SSL Info

python3 finalrecon.py --url https://example.com --ssl

Explanation: Dumps SSL certificate details.

4. Whois

python3 finalrecon.py --url http://example.com --whois

Explanation: Gets domain registration info.

5. Crawl

python3 finalrecon.py --url http://example.com --crawl

Explanation: Crawls the site to find internal links.

6. DNS Enum

python3 finalrecon.py --url http://example.com --dns

Explanation: Dumps DNS records (A, MX, NS, etc.).

7. Subdomain Enum

python3 finalrecon.py --url http://example.com --sub

Explanation: Searches for subdomains.

8. Directory Search

python3 finalrecon.py --url http://example.com --dir

Explanation: Checks for common directories.

9. Wayback Check

python3 finalrecon.py --url http://example.com --wayback

Explanation: Checks Wayback machine for archived URLs.

10. Output

# (Automatic)

Explanation: FinalRecon automatically creates a timestamped folder with logs.

The Most Powerful Command

python3 finalrecon.py --url http://target.com --full

Explanation: The --full flag is the most powerful as it provides a complete dossier on the target in one go.