Stealthy Domain Reconnaissance Tool for Security Researchers
Chrome Extension paired with a high-performance Python FastAPI backend for instant domain intelligence.
Spectre/
├── backend/
│ ├── main.py # FastAPI application
│ ├── scanner.py # Reconnaissance modules
│ └── requirements.txt # Python dependencies
│
├── extension/
│ ├── manifest.json # Chrome Extension manifest
│ ├── popup.html # Extension popup UI
│ ├── styles.css # theme styles
│ ├── popup.js # Frontend logic
│ └── icons/ # Extension icons
│ ├── icon16.png
│ ├── icon48.png
│ └── icon128.png
│
└── README.md
| Feature | Description |
|---|---|
| WHOIS Intel | Registrar, creation/expiry dates, nameservers, organization. Warns if < 30 days until expiry |
| IP & Hosting | IP resolution, geolocation, ISP, ASN. Detects WAF/CDN (Cloudflare, Akamai, etc.) |
| SSL Certificate | Issuer, validity dates, protocol version, days remaining |
| Subdomain Discovery | Passive OSINT via Certificate Transparency logs (crt.sh) |
| Tech Stack Detection | Server/powered-by headers with CVE vulnerability mapping |
| Historical Data | Mock "Pro Feature" showing previous registrars and drop history |
- Python 3.8+
- Google Chrome (or Chromium-based browser)
- pip (Python package manager)
cd Spectre\backend
pip install -r requirements.txtcd Spectre\backend
python -m uvicorn main:app --reload --port 8000You should see:
INFO: Uvicorn running on http://127.0.0.1:8000 (Press CTRL+C to quit)
INFO: Started reloader process
Keep this terminal open! The backend must be running for the extension to work.
Before loading the extension, create placeholder icons or use the provided ones:
- Create the
iconsfolder:extension/icons/ - Add 16x16, 48x48, and 128x128 PNG icons named
icon16.png,icon48.png,icon128.png
Or copy any square PNG and rename them accordingly.
- Open Chrome and navigate to:
chrome://extensions/ - Enable Developer mode (toggle in top-right)
- Click "Load unpacked"
- Select the
extensionfolder:Spectre\extension - The Spectre icon (👻) should appear in your toolbar
- Navigate to any website (e.g.,
https://google.com) - Click the Spectre extension icon
- Watch the radar animation as it scans
- Explore the intelligence results!
| Endpoint | Method | Description |
|---|---|---|
/ |
GET | Health check |
/scan?domain=example.com |
GET | Full domain reconnaissance |
/health |
GET | Detailed service status |
curl "http://localhost:8000/scan?domain=google.com"- Background:
#0a0a0a(Deep black) - Primary Accent:
#bf00ff(Neon purple) - Secondary Accent:
#00f0ff(Cyan) - Text: Ghost white (
#f0f0f0) - Radar scanning animation
- Glassmorphism effects
- Smooth micro-animations
- Ensure the FastAPI server is running on
http://localhost:8000 - Check the terminal for errors
- Try:
curl http://localhost:8000/
- Spectre cannot scan
chrome://orchrome-extension://URLs - Navigate to a real website first
- Make sure you loaded the correct
extensionfolder - Check
chrome://extensions/for errors - Ensure
manifest.jsonis valid JSON
- Some domains may have slow WHOIS servers
- crt.sh can be slow for domains with many subdomains
- Check your internet connection
MIT License - Feel free to modify and use for security research.
This tool is intended for authorized security research only. Only scan domains you own or have explicit permission to analyze. The authors are not responsible for misuse.
SPECTRE v1.0