cyberneticlibrary
← library

Execute comprehensive security recon

osint-methodologyskillsetup L31,791
elementalsouls/Claude-BugHunter
What it does

Apply structured reconnaissance methodology across target infrastructure

Best for

When reconnaissance needs repeatable structure and documentation versus ad-hoc browsing.

Inputs
  • · target domain list
  • · scope boundaries
Outputs
  • · asset inventory
  • · service mapping
  • · technology stack fingerprint
Requires
  • · search engines
  • · WHOIS/DNS queries
  • · certificate transparency logs
Preconditions

Legal authorization; scope clearly defined; passive reconnaissance only

Failure modes
  • · False positives on shared infrastructure
  • · expired domains still resolve
  • · wildcard DNS masks subdomains
Trust signals
  • · methodology documented
  • · data source prioritization
  • · multi-step verification approach