Hawkscan is a free and open-source tool available on Github. Hawkscan is based upon Open Source Intelligence (OSINT). Hawkscan is the easiest and useful tool for reconnaissance. The interface of Hawkscan is very similar to Metasploit 1 and Metasploit 2. Hawkscan provides a command-line interface that you can run on Kali Linux. This tool can be used to get information about our target(domain) website and IP address. There are various modules that work in this tool. Using different modules You can perform information gathering easily. This information includes DNS server information, organisation name, address, city, zip, country, email address related to the respective organisation, registrars, naming servers, DNS informations, Website Information, E-mail Address Checker, Phone Number Information, Credit Card Bin Checker, Ip Locator, Port Scanner, whois, bing, censys.io, dns, github, dnsdumpster, instagram, crt, ask, dogpile.
These were the modules for which the tool uses the publicly available data to get information about the target. You don’t need to do much because it will automatically configure itself using the bash command. The interactive console provides a number of helpful features, such as command completion and contextual help. Hawkscan is a web reconnaissance tool written in python. It has so many modules, database interaction, built-in convenience functions, interactive help, and command completion, Hawkscan provides a powerful environment in which open source web-based reconnaissance can be conducted, and we can gather all information.
Features of Hawkscan:
- Hawkscan is a free and open-source tool available on Github.
- Hawkscan is an Open Source Intelligence and Information Gathering Tool (OSINT).
- Hawkscan is used for performing reconnaissance on websites and webapps.
- Hawkscan is a lightweight tool available on Github.
- Hawkscan is easy to use.
- Hawkscan interface is just like metasploitable 1 and metasploitable 2.
- Hawkscan can perform reconnaissance on multiple parameters such as website, email address etc.
- Hawkscan is available for Kali Linux.
- Hawkscan works as an open-source tool intelligence tool which means open-source information is used by this tool to perform reconnaissance.
- Hawkscan is written in python language.
- Hawkscan uses the following modules to perform reconnaissance dns, netcraft, whois, bing, dns, github, dnsdumpster etc.
Installation of the Hawkscan Tool
Step 1: Open your Kali Linux operating system. Move to desktop. Here you have to create a directory called hawkscan. In this directory, you have to install the tool. To move to desktop use the following command.
Step 2: Now you are on the desktop. Here you have to create hawkscan. To create hawkscan directory use the following command.
Step 3: You have created a directory. Now use the following command to move into that directory.
Step 4: Now you are in hawkscan directory. Now you have to install the tool using the following command. Use the following command to install hawkscan.
git clone https://github.com/c0dejump/HawkScan.git
Step 5: The tool has been downloaded to your system now use the following command to list out the contents of the directory.
Step 6: You can see there is a directory called HawkScan. Move to this directory using the following command.
Step 7: Now you are in the directory HawkScan. Use the following command to list out the contents of the directory.
Step 8: Now you have to install requirements. Use the following command to install requirements.
pip3 install -r requirements.txt
Step 9: Now you have to give the permission of the execution to the tool. Use the following commands to give permissions.
chmod +x setup.py hawkscan.py config.py
Step 10: Now to run the tool along with the help menu of the tool use the following command.
python3 hawkscan.py -h
You can see that the tool is running successfully. Now we will see some examples of how to use the tool.
Use HawkScan tool to scan the website:
python3 hawkscan.py -u http://testphp.vulnweb.com/
Use this command to scan a website. We have taken testphp.vulnweb.com.
These are the details we got from scanning the test.php.vulnhub.com. Similarly, you can do on your target.HawkScan interface is very similar to Metasploit 1 and Metasploit 2. HawkScan provides a command-line interface that you can run on Kali Linux. This tool can be used to get information about our target(domain) website and IP address.