FREAK

A passive recon suite designed for fetching the information about web application

Usage: python3 setup.py python3 freak.py

warning This tool will throw error if you doesn't provide valid api key

Mechanism

CMS detection

Detect the CMS and its version used in the web application

FUZZING

Fuzz the basic vulnerable directory and find sensitive files like .git, wp-json, xmlrpc, crossdomain, etc.

javascript fetching

fetch all the javascript files used in the webpage and displays on terminal

Shodan search

Fetch the cloudservices used in domain, country, area, ISP also fetch the open ports via searching on Shodan

archieved URL search

fetch all the URL from wayback machine or which are archieved by administrator

DNS records

Fetch all dns records of web application

  • txt records
  • host records
  • mx records

warning This tool will throw error if you doesn't provide valid api key

GitHub

https://github.com/tox7cv3nom/Freak