An automated Bug Bounty Recon Suite for Termux & Linux
| Module | Description |
|---|---|
| π Subdomain Enumeration | Find subdomains of any target |
| β Alive Checker | Check which domains are live |
| π Port Scanner | Scan open ports on targets |
| π‘οΈ Header Analyzer | Check missing security headers |
| π Directory Bruteforcer | Find hidden paths & directories |
| π JS Finder | Extract endpoints & secrets from JS |
| π°οΈ Wayback URL Collector | Collect URLs from Wayback Machine |
| π Report Generator | Generate TXT & HTML reports |
pkg update && pkg upgrade -y
pkg install python git figlet ruby -y
gem install lolcat
git clone https://github.com/tanvirpiyal/HexaHunt.git
cd HexaHunt
pip install -r requirements.txt
python hexahunt.pysudo apt update
sudo apt install python3 python3-pip git figlet -y
pip3 install lolcat
git clone https://github.com/tanvirpiyal/HexaHunt.git
cd HexaHunt
pip3 install -r requirements.txt
python3 hexahunt.py[1] Subdomain Enumeration β Find subdomains
[2] Alive Checker β Check live domains
[3] Port Scanner β Scan open ports
[4] Header Analyzer β Security header check
[5] Directory Bruteforcer β Find hidden paths
[6] JS Finder β Extract JS secrets
[7] Wayback URL Collector β Historical URLs
[8] Report Generator β Export HTML/TXT report
Target Domain
β
[1] Subdomain Enum β subdomains found
β
[2] Alive Check β live domains
β
[3] Port Scan β open ports
β
[4] Header Check β missing headers
β
[5] Dir Brute β hidden paths
β
[6] JS Finder β leaked secrets
β
[7] Wayback β historical URLs
β
[8] Report β HTML/TXT export
HexaHunt is for educational purposes and authorized testing only. Do not use against targets without explicit permission. The developer is not responsible for any misuse.
- tanvirpiyal β GitHub
- reconX β Subdomain Enumeration
- HexaSafeLink β Link Safety Checker
- SmartClean β Termux Cleaner