The rapid advancement of information technology has introduced a noticeable shift from traditional offline practices to more efficient and interconnected online environments. This transition, while offering convenience, has also increased exposure to various cyber threats such as identity theft, impersonation, and phishing scams. Reconnaissance, or briefly known as information gathering, is a key stage for threat actors, often relying on open-source intelligence (OSINT) to collect sensitive and extensive data on targets. In response to this challenge, this study introduces reconCTI, a command-line tool built using Python for Linux systems. The tool is designed to search for sensitive data leaks across both surface web and dark web platforms. It allows users to input specific keywords, scan multiple sites at once, and then assess the findings by referencing the MITRE ATT&CK framework. The results are compiled into a threat report that also includes possible mitigation strategies. reconCTI is intended to support both cybersecurity professionals and individuals in identifying risks early and taking appropriate action.

翻译：信息技术的快速发展引发了从传统离线实践向更高效、互联的在线环境的显著转变。这一转变在带来便利的同时，也增加了对各种网络威胁（如身份盗窃、冒名顶替和网络钓鱼诈骗）的暴露。侦察（简称为信息收集）是威胁行为者的关键阶段，他们通常依靠开源情报（OSINT）来收集目标敏感而广泛的数据。针对这一挑战，本研究引入了reconCTI，这是一个基于Python构建的、用于Linux系统的命令行工具。该工具旨在搜索暗网和表层网络平台中的敏感数据泄露。它允许用户输入特定关键词，同时扫描多个网站，然后通过参考MITRE ATT&CK框架评估发现结果。结果将汇总成一份威胁报告，其中还包含可能的缓解策略。reconCTI旨在支持网络安全专业人士和个人尽早识别风险并采取适当行动。