CameronWhat is Raccoon?
It is a tool made for reconnaissance and information gathering with an emphasis on simplicity. It will do everything from fetching DNS records, retrieving WHOIS information, obtaining TLS data, detecting WAF presence and up to threaded dir busting and subdomain enumeration. Every scan outputs to a corresponding file.
Raccoon is a tool in the Security category of a tech stack.
Key Features
DNS detailsDNS visual mapping using DNS dumpsterWHOIS informationTLS Data - supported ciphers, TLS versions, certificate details and SANsPort ScanServices and scripts scanURL fuzzing and dir/file detectionSubdomain enumeration - uses Google dorking, DNS dumpster queries, SAN discovery and bruteforceWeb application data retrieval: CMS detection, Web server info and X-Powered-By, robots.txt and sitemap extraction, Cookie inspection, Extracts all fuzzable URLs, Discovers HTML forms, Retrieves all Email addresses, Scans target for vulnerable S3 buckets and enumerates them for sensitive filesDetects known WAFsSupports anonymous routing through Tor/ProxiesUses asyncio for improved performanceSaves output to files - separates targets by folders and modules by files
Raccoon Pros & Cons
Pros of Raccoon
No pros listed yet.
Cons of Raccoon
No cons listed yet.
Raccoon Alternatives & Comparisons
What are some alternatives to Raccoon?
OpenSSL
It is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols. It is also a general-purpose cryptography library.
Let's Encrypt
It is a free, automated, and open certificate authority brought to you by the non-profit Internet Security Research Group (ISRG).
Ensighten
Ensighten is a comprehensive website security company, offering next generation compliance, enforcement and client-side protection against data loss, ad injection and intrusion.
Google reCaptcha
It is a free service that protects your website from spam and abuse. It uses an advanced risk analysis engine and adaptive CAPTCHAs to keep automated software from engaging in abusive activities on your site. It does this while letting your valid users pass through with ease.
