Skip to content

gnonymous1/ReconPortal

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

5 Commits
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 

Repository files navigation


Version Python Node License PRs

FastAPI Next.js Docker Tools


Orchestrate. Enumerate. Dominate. A unified intelligence platform that transforms 100+ fragmented security tools into a single automated reconnaissance machine.


πŸ” What Is ReconPortal?

ReconPortal v3.1 is a professional-grade bug bounty and OSINT orchestration platform. It unifies fragmented security tooling into a single intelligent interface β€” with visual relationship graphs, live surveillance streaming, identity management, and automated vulnerability workflows.

Built for ethical security researchers, bug bounty hunters, penetration testers, and red teams who need nation-state grade tooling with professional UX.

[Target Domain / Username / IP]
           β”‚
           β–Ό
β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚               ReconPortal Intelligence Hub            β”‚
β”‚                                                      β”‚
β”‚  πŸ•ΈοΈ  Graph Engine     β†’  Visualize relationships    β”‚
β”‚  πŸ‘οΈ  Live Surveillance β†’  Headless browser streaming β”‚
β”‚  🎭  Identity Vault   β†’  Sock puppet management     β”‚
β”‚  πŸ› οΈ  Tool Orchestrator β†’  100+ unified tool runners β”‚
β”‚  πŸ“Š  Results Aggregatorβ†’  Unified findings view     β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜
           β”‚
           β–Ό
[Unified Intelligence Report]

✨ Feature Suite

πŸ•ΈοΈ Interactive Intelligence Graph (Palantir View)

Visualize complex recon data in a dynamic force-simulation node graph. Discover hidden relationships between usernames, IPs, social accounts, and domains through interactive physics-based exploration.

πŸ‘οΈ Live Surveillance & Identity Warmer

Real-time headless browser streaming via WebSockets. Watch automation agents navigate targets live. Built-in Auto-Warmer simulates human behavior to maintain high platform trust scores.

🎭 Sock Puppet Vault

Manage and rotate hundreds of operational identities. Built-in cookie injection engine β€” bypass 2FA and login screens by injecting raw session payloads directly into the automation engine.

πŸ› οΈ Universal Tool Orchestrator β€” 100+ Tools

Category Tools
OSINT Sherlock, Maigret, Instaloader, SpiderFoot, Recon-ng
Subdomain Recon Subfinder, Amass, Assetfinder, Cero, Httpx
Vulnerability Nuclei, Dalfox, SQLMap, Commix, XSStrike
Web Crawling Katana, Crawley, LinkFinder, SecretFinder
Network Nmap, Masscan, Shodan, Censys integrations
Password Hashcat, John, custom wordlist pipelines

⚑ Quick Start

Prerequisites

Python 3.10+  β€’  Node.js 18+  β€’  Go 1.21+ (recommended)  β€’  Git  β€’  Docker (optional)

1 β€” Clone & Configure

git clone https://github.com/gnonymous1/ReconPortal.git
cd ReconPortal

cp .env.example .env
# Edit .env with your credentials (see variable reference below)

2 β€” Install Everything (One Command)

# Windows
Start Project.bat   β†’  Select [8] Install / Check Dependencies

# Linux/macOS
python3 install_all_tools.py

This automatically:

  • Clones 100+ security tools
  • Installs all Python/Node packages
  • Sets up Playwright headless engine

3 β€” Launch

# Windows
Start Project.bat   β†’  Select [1] Start All Services

# Docker
docker-compose up -d

# Manual
python3 start_orchestrator.py
Dashboard: http://localhost:3005/dashboard
API Docs:  http://localhost:8000/docs

Environment Variables

cp .env.example .env
Variable Required Description
SECRET_KEY βœ… Django/FastAPI secret key
JWT_SECRET βœ… JWT token signing key
DB_PASS βœ… PostgreSQL password
MINIO_USER βœ… MinIO object storage user
MINIO_PASS βœ… MinIO object storage password
DOMAIN β€” Deployment domain (default: localhost)
NEXT_PUBLIC_API_URL β€” Frontend API base URL

πŸ” All secrets via environment variables only. Never commit .env to source control.


πŸ—οΈ Technology Stack

Layer Technology
Frontend Next.js 14 Β· TailwindCSS Β· Framer Motion Β· React-Force-Graph
Backend FastAPI (Python) Β· Uvicorn Β· Playwright
Real-time WebSockets β€” live surveillance streaming
Storage PostgreSQL Β· Redis Β· MinIO (object store)
Containers Docker Compose β€” full stack orchestration
Automation 100+ tool wrappers Β· Python subprocess orchestration

πŸ“ Project Structure

ReconPortal/
β”‚
β”œβ”€β”€ πŸ–₯️   frontend/              Next.js 14 intelligence dashboard
β”œβ”€β”€ βš™οΈ   services/              FastAPI microservices
β”‚   β”œβ”€β”€ recon/                 Subdomain & asset enumeration
β”‚   β”œβ”€β”€ osint/                 Identity & social intelligence
β”‚   β”œβ”€β”€ vuln/                  Vulnerability scanning pipeline
β”‚   └── surveillance/         Headless browser streaming
β”œβ”€β”€ πŸ—ƒοΈ   database/             PostgreSQL schema & migrations
β”œβ”€β”€ πŸ”§  scripts/              Tool installation & orchestration
β”œβ”€β”€ 🌐  extension/            Browser extension (optional)
β”œβ”€β”€ πŸ“¦  docker-compose.yml    Full stack container orchestration
β”œβ”€β”€ πŸ”  .env.example          Environment variable template
└── πŸ“š  Project setup.md      Detailed setup guide

πŸš€ Docker Deployment

# Full stack (recommended for production)
docker-compose up -d

# Development mode (hot-reload)
docker-compose -f docker-compose.dev.yml up

# View logs
docker-compose logs -f

πŸ—ΊοΈ Roadmap

  • AI-powered target prioritization (GPT/Gemini integration)
  • Automated report generation (PDF + HTML)
  • Team collaboration β€” multi-user workspaces
  • Cloud scan distribution β€” distributed recon agents
  • CVE correlation engine
  • Slack/Discord webhook notifications

βš–οΈ Legal Disclaimer

ReconPortal is for authorized security research and bug bounty hunting only.

  • Only scan targets for which you have explicit written permission
  • Comply with all applicable laws and bug bounty program rules
  • The developers assume zero liability for misuse or damage
  • Always verify scope before running any automated tool

🀝 Contributing

git checkout -b feature/your-feature
# Make changes + test
git commit -m "feat: your feature"
# Open a Pull Request

See CONTRIBUTING.md for full guidelines. Issues tagged good first issue are great starting points.


Stars Forks

πŸ› Report Bug β€’ ✨ Request Feature β€’ πŸ’¬ Discuss


ReconPortal β€” Orchestrating the Attack Surface.

About

πŸ›‘οΈ Nation-state grade OSINT & bug bounty orchestration platform β€” 100+ tools, intelligence graph, live surveillance, sock puppet vault

Topics

Resources

Stars

1 star

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors