In this series of the Professionally Evil Toolkit we will be talking about Reconnoiter. Reconnoiter was created by Secure Ideas' very own Jason Wood. Reconnoiter is a set of scripts written in Python to help aid in the reconnaissance phase of a penetration test. The tool has two main functions: username generation and LinkedIn profile harvesting.
The LinkedIn profile harvesting tool allows you to gather LinkedIn profiles from any company that you specify. You can then use this information to start gathering information about company employee names and positions.
The command syntax for this tool looks like this:
For example to harvest profiles for Secure Ideas you would do the following:
The second Python script is a username generator. This is a great script that will generate usernames based on social media sites. The syntax of the script looks like this:
For example to harvest possible usernames for Secure Ideas you would do the following:
Reconnoiter is a great tool that should be used for the reconnaissance phase of any penetration test. You can use this information to help gather usernames for brute forcing, or more information about the company for a social engineering attack.
Want to know what an attacker can learn about your organization?
Our team uses OSINT and reconnaissance tools as part of every penetration test to identify your exposed attack surface. Reach out to discuss a security assessment.
Talk to Our Team