RedTeam Recon Dashboard
1 rating
)Overview
Aggregates WHOIS/RDAP, DNS, technology fingerprint, and exposed ports for the current site. For authorized reconnaissance only.
RedTeam Recon Dashboard puts a full first-pass reconnaissance profile of any website one click away. Open a site, click the toolbar icon, and a compact dashboard aggregates four kinds of intelligence about the current tab — no API keys, no accounts, and no setup. ━━ WHAT YOU GET ━━ • WHOIS / RDAP — registrar, creation / update / expiry dates, EPP status codes, nameservers, and DNSSEC state, pulled live over RDAP (the modern, HTTPS-based successor to port-43 WHOIS). • DNS — A, AAAA, CNAME, MX, NS, TXT, SOA, and CAA records, resolved over DNS-over-HTTPS. • Technology stack — CMS, JavaScript frameworks and libraries, analytics and tag managers, CDN, web server, and server-side language, fingerprinted from the page's own signals and response headers. • Exposed ports & attack surface — publicly known open ports (with service labels), detected products (CPEs), known CVEs, and tags for the site's resolved IP address, sourced from Shodan's InternetDB. Results stream into the dashboard panel-by-panel, so the fast lookups appear instantly while slower ones fill in. ━━ PASSIVE BY DESIGN ━━ This extension performs NO active scanning. A browser cannot open raw network sockets, and by design the extension never attempts to. "Exposed ports" come from Shodan's existing, internet-wide scan data — not from probing the target. Every data source is a read-only public API. ━━ SAFE WITH INTERNAL TARGETS ━━ Built for security professionals who work inside corporate networks: • Private, loopback, link-local, CGNAT, and reserved hosts (10.x, 172.16–31.x, 192.168.x, 127.x, *.local, *.corp, *.internal, …) are refused before any network request, so internal hostnames never leak to third-party services. • If a public hostname resolves to a private IP (split-horizon DNS), the port lookup is skipped before the address would be sent to Shodan. • The technology probe reads cookie NAMES only — never cookie values. • Minimal permissions: activeTab (not broad host access), an explicit Content-Security-Policy, and only three external hosts contacted. ━━ HOW IT WORKS ━━ When you click the icon, the extension reads the active tab's URL, injects a one-shot probe to gather technology signals, and queries three free public services: • rdap.org → WHOIS / RDAP registration data • cloudflare-dns.com → DNS records (DNS-over-HTTPS) • internetdb.shodan.io → publicly known open ports & CVEs Nothing is stored, and no data is ever sent to the developer. ━━ WHO IT'S FOR ━━ Penetration testers, bug-bounty hunters, blue-teamers, SOC analysts, and web developers who want a fast, at-a-glance recon profile without juggling half a dozen CLI tools or websites. ━━ AUTHORIZED USE ONLY ━━ Use this tool only against assets you own or are explicitly authorized to assess. It surfaces publicly available information; you are responsible for complying with all applicable laws and policies. Open source. No trackers. No analytics. No accounts.
5 out of 51 rating
Details
- Version1.0.0
- UpdatedJuly 8, 2026
- Offered byAndrew Ingram
- Size1.18MiB
- LanguagesEnglish (United States)
- DeveloperAndrew Ingram
1460 Beechmeadow Lane Cincinnati, OH 45238 USEmail
chrome.google.com.pu@hide702.aleeas.com - Non-traderThis developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.
Privacy
This developer declares that your data is
- Not being sold to third parties, outside of the approved use cases
- Not being used or transferred for purposes that are unrelated to the item's core functionality
- Not being used or transferred to determine creditworthiness or for lending purposes
Support
For help with questions, suggestions, or problems, please open this page on your desktop browser