From 866bd0d7b823c35043c4e714d3129ba8ed9d9eb2 Mon Sep 17 00:00:00 2001
From: Mzack9999 <mzack9999@protonmail.com>
Date: Mon, 24 Oct 2022 08:58:50 +0200
Subject: [PATCH] adding recon.cloud source

---
 README.md                                     |  2 +-
 v2/pkg/passive/sources.go                     |  2 +
 v2/pkg/passive/sources_test.go                |  7 +-
 .../sources/reconcloud/reconcloud.go          | 81 +++++++++++++++++++
 4 files changed, 89 insertions(+), 3 deletions(-)
 create mode 100644 v2/pkg/subscraping/sources/reconcloud/reconcloud.go

diff --git a/README.md b/README.md
index 04263bda5..224934f82 100644
--- a/README.md
+++ b/README.md
@@ -114,7 +114,7 @@ go install -v github.com/projectdiscovery/subfinder/v2/cmd/subfinder@latest
 
 Subfinder will work after using the installation instructions however to configure Subfinder to work with certain services, you will need to have setup API keys. The following services do not work without an API key:
 
-[BeVigil](https://bevigil.com/osint-api), [Binaryedge](https://binaryedge.io), [C99](https://api.c99.nl/), [Certspotter](https://sslmate.com/certspotter/api/), [Chinaz](http://my.chinaz.com/ChinazAPI/DataCenter/MyDataApi), [Censys](https://censys.io), [Chaos](https://chaos.projectdiscovery.io), [DnsDB](https://api.dnsdb.info), [Fofa](https://fofa.info/static_pages/api_help), [Github](https://github.com), [Intelx](https://intelx.io), [Passivetotal](http://passivetotal.org), [Robtex](https://www.robtex.com/api/), [SecurityTrails](http://securitytrails.com), [Shodan](https://shodan.io), [Threatbook](https://x.threatbook.cn/en), [Virustotal](https://www.virustotal.com), [WhoisXML API](https://whoisxmlapi.com/), [Zoomeye](https://www.zoomeye.org)
+[BeVigil](https://bevigil.com/osint-api), [Binaryedge](https://binaryedge.io), [C99](https://api.c99.nl/), [Certspotter](https://sslmate.com/certspotter/api/), [Chinaz](http://my.chinaz.com/ChinazAPI/DataCenter/MyDataApi), [Censys](https://censys.io), [Chaos](https://chaos.projectdiscovery.io), [DnsDB](https://api.dnsdb.info), [Fofa](https://fofa.info/static_pages/api_help), [Github](https://github.com), [Intelx](https://intelx.io), [Passivetotal](http://passivetotal.org), [Robtex](https://www.robtex.com/api/), [SecurityTrails](http://securitytrails.com), [Shodan](https://shodan.io), [Threatbook](https://x.threatbook.cn/en), [Virustotal](https://www.virustotal.com), [WhoisXML API](https://whoisxmlapi.com/), [Zoomeye](https://www.zoomeye.org), [Recon.Cloud](https://recon.cloud/)
 
 These values are stored in the `$HOME/.config/subfinder/provider-config.yaml` file which will be created when you run the tool for the first time. The configuration file uses the YAML format. Multiple API keys can be specified for each of these services from which one of them will be used for enumeration.
 
diff --git a/v2/pkg/passive/sources.go b/v2/pkg/passive/sources.go
index 2544742f0..5076b5ab9 100644
--- a/v2/pkg/passive/sources.go
+++ b/v2/pkg/passive/sources.go
@@ -31,6 +31,7 @@ import (
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/passivetotal"
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/quake"
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/rapiddns"
+	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/reconcloud"
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/riddler"
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/robtex"
 	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping/sources/securitytrails"
@@ -83,6 +84,7 @@ var AllSources = [...]subscraping.Source{
 	&zoomeye.Source{},
 	&zoomeyeapi.Source{},
 	&dnsrepo.Source{},
+	&reconcloud.Source{},
 }
 
 var NameSourceMap = make(map[string]subscraping.Source, len(AllSources))
diff --git a/v2/pkg/passive/sources_test.go b/v2/pkg/passive/sources_test.go
index 4ff093fc6..8b47409e6 100644
--- a/v2/pkg/passive/sources_test.go
+++ b/v2/pkg/passive/sources_test.go
@@ -47,6 +47,7 @@ var (
 		"whoisxmlapi",
 		"zoomeye",
 		"zoomeyeapi",
+		"reconcloud",
 	}
 
 	expectedDefaultSources = []string{
@@ -75,6 +76,7 @@ var (
 		"threatminer",
 		"virustotal",
 		"whoisxmlapi",
+		"reconcloud",
 	}
 
 	expectedDefaultRecursiveSources = []string{
@@ -89,6 +91,7 @@ var (
 		"securitytrails",
 		"sonarsearch",
 		"virustotal",
+		"reconcloud",
 	}
 )
 
@@ -134,13 +137,13 @@ func TestSourceFiltering(t *testing.T) {
 		{someSources, someExclusions, false, false, len(someSources) - len(someExclusions)},
 		{someSources, someExclusions, false, true, 1},
 		{someSources, someExclusions, true, false, len(AllSources) - len(someExclusions)},
-		{someSources, someExclusions, true, true, 9},
+		{someSources, someExclusions, true, true, 10},
 
 		{someSources, []string{}, false, false, len(someSources)},
 		{someSources, []string{}, true, false, len(AllSources)},
 
 		{[]string{}, []string{}, false, false, len(expectedDefaultSources)},
-		{[]string{}, []string{}, false, true, 9},
+		{[]string{}, []string{}, false, true, 10},
 		{[]string{}, []string{}, true, false, len(AllSources)},
 		{[]string{}, []string{}, true, true, len(expectedDefaultRecursiveSources)},
 	}
diff --git a/v2/pkg/subscraping/sources/reconcloud/reconcloud.go b/v2/pkg/subscraping/sources/reconcloud/reconcloud.go
new file mode 100644
index 000000000..670ebfdad
--- /dev/null
+++ b/v2/pkg/subscraping/sources/reconcloud/reconcloud.go
@@ -0,0 +1,81 @@
+// Package reconcloud logic
+package reconcloud
+
+import (
+	"context"
+	"fmt"
+
+	jsoniter "github.com/json-iterator/go"
+	"github.com/projectdiscovery/subfinder/v2/pkg/subscraping"
+)
+
+type reconCloudResponse struct {
+	MsgType         string            `json:"msg_type"`
+	RequestID       string            `json:"request_id"`
+	OnCache         bool              `json:"on_cache"`
+	Step            string            `json:"step"`
+	CloudAssetsList []cloudAssetsList `json:"cloud_assets_list"`
+}
+
+type cloudAssetsList struct {
+	Key           string `json:"key"`
+	Domain        string `json:"domain"`
+	CloudProvider string `json:"cloud_provider"`
+}
+
+// Source is the passive scraping agent
+type Source struct{}
+
+// Run function returns all subdomains found with the service
+func (s *Source) Run(ctx context.Context, domain string, session *subscraping.Session) <-chan subscraping.Result {
+	results := make(chan subscraping.Result)
+
+	go func() {
+		defer close(results)
+
+		resp, err := session.SimpleGet(ctx, fmt.Sprintf("https://recon.cloud/api/search?domain=%s", domain))
+		if err != nil && resp == nil {
+			results <- subscraping.Result{Source: s.Name(), Type: subscraping.Error, Error: err}
+			session.DiscardHTTPResponse(resp)
+			return
+		}
+
+		var response reconCloudResponse
+		err = jsoniter.NewDecoder(resp.Body).Decode(&response)
+		if err != nil {
+			results <- subscraping.Result{Source: s.Name(), Type: subscraping.Error, Error: err}
+			resp.Body.Close()
+			return
+		}
+		resp.Body.Close()
+
+		if len(response.CloudAssetsList) > 0 {
+			for _, cloudAsset := range response.CloudAssetsList {
+				results <- subscraping.Result{Source: s.Name(), Type: subscraping.Subdomain, Value: cloudAsset.Domain}
+			}
+		}
+	}()
+
+	return results
+}
+
+// Name returns the name of the source
+func (s *Source) Name() string {
+	return "reconcloud"
+}
+
+func (s *Source) IsDefault() bool {
+	return true
+}
+
+func (s *Source) HasRecursiveSupport() bool {
+	return true
+}
+
+func (s *Source) NeedsKey() bool {
+	return false
+}
+
+func (s *Source) AddApiKeys(_ []string) {
+	// no key needed
+}