Diablo_Rain/Diablo_ClaudeMD_Ricing_example
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
master
Diablo_ClaudeMD_Ricing_example/skills/recon-osint/examples/example_usage.md
diablo 50fa79407d
Some checks are pending
CI — CoM Config Validation / Validate JSON Configs (push) Waiting to run
Details
CI — CoM Config Validation / Validate YAML Configs (push) Waiting to run
Details
CI — CoM Config Validation / Lint Shell Scripts (push) Waiting to run
Details
CI — CoM Config Validation / Secret Detection (push) Waiting to run
Details
CI — CoM Config Validation / Lint Markdown (push) Waiting to run
Details
CI — CoM Config Validation / Validate CODEOWNERS (push) Waiting to run
Details
CoM Claude Command Center — sanitized public configuration 
Public, sanitized mirror of an AI orchestration command center: agents, skills,
MCP servers, slash-command workflows. All infrastructure identifiers, hostnames,
mesh IPs/subnets, repo paths, maintainer identity, and hardware fleet specifics
scrubbed to <placeholders>; session debug logs and host-specific memory removed.
No live credentials. Verified clean by automated leak sweep. See SANITIZATION.md.

churchofmalware.org . authorized research only
2026-06-10 02:02:03 -04:00

1.3 KiB
Raw Permalink Blame History

Recon & OSINT — Example Usage

Subdomain Enumeration

Passive Only (Safest)

python scripts/subdomain_enum.py -d example.com --passive-only -o results.json

With Brute-Force

python scripts/subdomain_enum.py -d example.com -w /usr/share/wordlists/subdomains.txt -t 20 -o results.json

Custom DNS Server

python scripts/subdomain_enum.py -d example.com -n 8.8.8.8 --passive-only

DNS Reconnaissance

Full DNS Recon

python scripts/dns_recon.py -d example.com -o dns_report.json

Check Zone Transfer

python scripts/dns_recon.py -d example.com --check-zone-transfer -v

Technology Fingerprinting

Single Target

python scripts/tech_fingerprint.py -u https://example.com -o tech.json

Multiple Targets

echo "https://site1.com\nhttps://site2.com" > targets.txt
python scripts/tech_fingerprint.py -U targets.txt -o report.json

Integration Workflow

# Step 1: Discover subdomains
python scripts/subdomain_enum.py -d target.com --passive-only -o subs.json

# Step 2: DNS recon on the domain
python scripts/dns_recon.py -d target.com -o dns.json

# Step 3: Fingerprint discovered web services
# (Extract URLs from subs.json and pass to fingerprinter)
python scripts/tech_fingerprint.py -U discovered_urls.txt -o tech.json