.                 .                 .
       /_\       .       /_\       .       /_\
      /___\     /_\     /___\     /_\     /___\
     /|   |\   /___\   /|   |\   /___\   /|   |\
    / |   | \ /|   |\ / |   | \ /|   |\ / |   | \
   /__|___|__\|_|___|/__|___|__\|_|___|/__|___|__\
  |  [=] [=]  |     |  [=] [=]  |     |  [=] [=]  |
  |  [=] [=]  | [=] |  [=] [=]  | [=] |  [=] [=]  |
  |  [=] [=]  | [=] |  [=] [=]  | [=] |  [=] [=]  |
  |___________|_____|____/^\____|_____|___________|
  |  _  | |  _  |       /   \       |  _  | |  _  |
  | | | | | | | |      | ^^^ |      | | | | | | | |
  | |_| | | |_| |      | ||| |      | |_| | | |_| |
  |_____|_|_____|______|_____|______|_____|_|_____|
Joe's Recon Tool
Blue Team Defense Platform
Try: CVE-2024-6387 CVE-2021-44228 www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea.com T1059.001 1.1.1.1 avsvmcloud.com
One IOC per line. Max 50.
Slide to verify you're human:
Drag to match puzzle piece ➡
--:--:-- ...
32+ intelligence sources 👤 GUEST
This is a demo instance -- public users are limited to 1 scan per 5 minutes.
Querying sources...
Trust Score
-
/ 100

Top Hits

Key Intel

FieldValueSource

Intelligence Sources

VirusTotal
AbuseIPDB
Shodan
GreyNoise
AlienVault OTX
urlscan.io
IPQualityScore
Hybrid Analysis
Pulsedive
SecurityTrails
Hunter.io
DNS (built-in)
WHOIS (built-in)
GeoIP (built-in)
ThreatFox (free)
URLhaus (free)
MalwareBazaar (free)
BGPView (free)
NVD / MITRE (free)
Port Scanner
SSL Checker
crt.sh (CT Logs)
Wayback Machine
DShield (SANS)
Security Headers
Web Config
Email Security
Web Tech Detection
Shodan InternetDB
WHOIS Enhanced
CVE Identifier CVE-2024-3400
MITRE ATT&CK ID T1059 or T1059.001
Autonomous System Number AS15169
Windows Security Identifier S-1-5-21-3623811015-3361044348-30300820-1013
AWS Access Key ID AKIAIOSFODNN7EXAMPLE
AWS Secret Access Key wJalrXUtnFEMI/K7MDENG/bPxRfi...
YARA Rule rule example_malware { ... }
JSON Web Token eyJhbGciOiJIUzI1NiJ9.eyJzdWIiOi...
SSH Public Key ssh-rsa AAAAB3NzaC1yc2EAAAA...
IPv4 CIDR Range 192.168.1.0/24
IPv6 CIDR Range 2001:db8::/32
IPv4 Address 8.8.8.8
IPv6 Address 2001:4860:4860::8888
MAC Address AA:BB:CC:DD:EE:FF
Certificate Fingerprint (SHA1) B1:BC:96:8B:D4:F4:9D:62:2A:...
PGP Key Fingerprint 0A12 B345 C678 D901 E234 ...
Email Address admin@evil.com
URL https://evil.com/payload.exe
Bitcoin Address 1A1zP1eP5QGefi2DMPTfTL5SLmv7DivfNa
Ethereum Address 0x742d35Cc6634C0532925a3b844Bc9e7595f...
UUID / GUID 550e8400-e29b-41d4-a716-446655440000
Credit Card Number 4111 1111 1111 1111
Phone Number +12125551234
MD5 Hash d41d8cd98f00b204e9800998ecf8427e
SHA1 Hash da39a3ee5e6b4b0d3255bfef95601890afd80709
JARM Fingerprint 27d40d40d29d40d1dc42d43d00041d444...
SHA256 Hash e3b0c44298fc1c149afbf4c8996fb924...
SHA512 Hash cf83e1357eefb8bdf1542850d66d8007...
ssdeep Fuzzy Hash 3:AXGBicFlgVNhBGcL6wCrFQEv:AXGHsNhxLsr2C
Windows Registry Key HKEY_LOCAL_MACHINE\SOFTWARE\...
Windows File Path C:\Windows\System32\cmd.exe
Linux File Path /etc/passwd
Binary String 0100110101011010
Hex String 0x4d5a90000300
HTTP User-Agent Mozilla/5.0 (Windows NT 10.0; ...)
Fully Qualified Domain Name mail.evil.com
Domain Name evil.com
Base64 Encoded Data SGVsbG8gV29ybGQ=
Joe's Recon Tool v2.0 — Blue Team Defense Platform — joeromaine.com EXPERIMENTAL — Use at own risk

Settings

Display

About

Privacy Policy
This application is experimental and not intended for public use. No data is stored permanently. Results are generated in real-time from third-party APIs. Use at your own risk. No warranty expressed or implied.