๋กœ๊ทธ์ธ
ReconDrop ๋ฏธ๋ฆฌ๋ณด๊ธฐ

ReconDrop ์ œ์ž‘์ž: Faizad Khan

A passive client-side recon tool for security professionals. Scans web pages for exposed API endpoints, secrets, DOM sinks, inline events, and framework fingerprints.

์‹คํ—˜์ 
5 (๋ฆฌ๋ทฐ 3๊ฐœ)
Firefox๋ฅผ ๋‹ค์šด๋กœ๋“œํ•˜๊ณ  ํ™•์žฅ ๊ธฐ๋Šฅ์„ ๋ฐ›์œผ์„ธ์š”
ํŒŒ์ผ ๋‹ค์šด๋กœ๋“œ
์ •๋ณด
ReconDrop is a browser-based passive reconnaissance extension designed for penetration testers and security researchers.

Features:
- ๐Ÿ” Framework fingerprinting (48 frameworks detected)
- ๐Ÿ”‘ Secret detection โ€” AWS keys, JWTs, API tokens
- ๐ŸŒ URL & endpoint collection (4-layer deep scan)
- โš ๏ธ DOM sink detection โ€” innerHTML, eval, document.write
- ๐ŸŽฏ Inline event handler mapping
- ๐Ÿ“ฅ Export all findings as JSON

ReconDrop runs entirely in the page context โ€” no data is sent externally. All results are displayed locally and can be exported for reporting.

Built for use during authorized penetration testing engagements only.
3๋ช…์ด 5์ ์œผ๋กœ ํ‰๊ฐ€ํ•จ

๋ณ„์  ์ €์žฅ๋จ

5
3
4
0
3
0
2
0
1
0
๊ถŒํ•œ ๋ฐ ๋ฐ์ดํ„ฐ

์„ ํƒ์  ๊ถŒํ•œ:

  • ๋ชจ๋“  ์›น์‚ฌ์ดํŠธ์—์„œ ์‚ฌ์šฉ์ž์˜ ๋ฐ์ดํ„ฐ์— ์ ‘๊ทผ

๋ฐ์ดํ„ฐ ์ˆ˜์ง‘:

  • ๊ฐœ๋ฐœ์ž๊ฐ€ ์ด ํ™•์žฅ ๊ธฐ๋Šฅ์€ ๋ฐ์ดํ„ฐ ์ˆ˜์ง‘์ด ํ•„์š”ํ•˜์ง€ ์•Š๋‹ค๊ณ  ํ•ฉ๋‹ˆ๋‹ค.
๋” ์•Œ์•„๋ณด๊ธฐ
์ถ”๊ฐ€ ์ •๋ณด
๋ถ€๊ฐ€ ๊ธฐ๋Šฅ ๋งํฌ
๋ฒ„์ „
3.0
ํฌ๊ธฐ
35.96 KB
๋งˆ์ง€๋ง‰ ์—…๋ฐ์ดํŠธ
8์ผ ์ „ (2026๋…„ 4์›” 24์ผ)
๋ผ์ด์„ ์Šค
MIT ๋ผ์ด์„ ์Šค
๋ชจ์Œ์ง‘์— ์ถ”๊ฐ€
์ด ๋ถ€๊ฐ€ ๊ธฐ๋Šฅ ์‹ ๊ณ