# Install csprecon with Homebrew

Discover new target domains using Content Security Policy. Version 0.4.6 via Homebrew; verified 2026-06-15.

## Install

```sh
sudo av install brew:csprecon
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install csprecon
```

  Evidence: local Homebrew formula metadata

## Package facts

- **Package key:** brew:csprecon
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/csprecon>
- **Version:** 0.4.6
- **Source summary:** Discover new target domains using Content Security Policy
- **Homepage:** <https://edoardottt.com/>
- **Repository:** <https://github.com/edoardottt/csprecon>
- **Upstream docs:** <https://github.com/edoardottt/csprecon#readme>
- **License:** MIT
- **Source archive:** <https://github.com/edoardottt/csprecon/archive/refs/tags/v0.4.6.tar.gz>
- **Last updated:** 2026-06-15T10:20:14-04:00
- **Generated:** 2026-07-08T07:18:31+00:00

## Executables

- csprecon (cli)
- csprecon (alias)

## Build dependencies

- go

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 0.4.6
- Package-manager updated: 2026-06-15
- Local data: ok
- Upstream repository: https://github.com/edoardottt/csprecon
- Upstream latest detected: v0.4.6 (current)
## Project history and usage

csprecon is a Go command-line reconnaissance tool for discovering target domains by inspecting Content Security Policy data.

### Project history

The upstream project presents csprecon as a focused security utility for bug-bounty and reconnaissance workflows. Its first GitHub release was v0.0.1 in November 2022, and the README documents release notes as the project's changelog surface.

### Adoption history

The official README documents Homebrew, Snap, and Go installation paths, placing the tool in the common distribution channels used by small Go security CLIs. It also lists appearances in security newsletters and community media, which points to use in the bug-bounty tooling ecosystem rather than as a general-purpose web crawler.

### How it is used

The CLI accepts single URLs, lists of domains, CIDR input, concurrency and rate-limit options, proxy settings, and JSON output. That makes it package-relevant as a composable recon binary for shell pipelines.

### Why package nerds care

For package managers, csprecon is a typical modern Go security tool: one executable, no documented config file, and official installation instructions that explicitly include Homebrew.

### Timeline

- 2022: v0.0.1 is published on GitHub.
- 2022: README documents Homebrew, Snap, and Go installation methods.
- 2023: v0.0.5 is published on GitHub.

### Related projects

- csprecon belongs to the same operational niche as other small reconnaissance and bug-bounty CLIs that discover domains, hosts, or policy-derived targets.

### Sources

- <https://github.com/edoardottt/csprecon#readme>
- <https://github.com/edoardottt/csprecon/releases/tag/v0.0.1>
- <https://github.com/edoardottt/csprecon/releases>


## Security Notes

No matching local secret-handling manifest was found for csprecon. Nucleus package metadata is still published here so future coverage has a stable package URL.


## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** csprecon
- **Version Scheme:** 0
- **Revision:** 0
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable


## Related links

- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [Homebrew utility packages](https://www.automicvault.com/pkg/brew-utility-packages/) - Matched Homebrew package provider.
- [go](https://www.automicvault.com/pkg/brew/go/) - Build dependency declared by Homebrew.
- [cariddi](https://www.automicvault.com/pkg/brew/cariddi/) - Shares the same upstream homepage.
- [favirecon](https://www.automicvault.com/pkg/brew/favirecon/) - Shares the same upstream homepage.
- [scilla](https://www.automicvault.com/pkg/brew/scilla/) - Shares the same upstream homepage.
- [amass](https://www.automicvault.com/pkg/brew/amass/) - Shares av.db curated category or tags: cli, reconnaissance, security.
- [bbot](https://www.automicvault.com/pkg/brew/bbot/) - Shares av.db curated category or tags: cli, reconnaissance, security.
- [gau](https://www.automicvault.com/pkg/brew/gau/) - Shares av.db curated category or tags: cli, reconnaissance, security.
- [observerward](https://www.automicvault.com/pkg/brew/observerward/) - Shares av.db curated category or tags: cli, reconnaissance, security.
- [recon-ng](https://www.automicvault.com/pkg/brew/recon-ng/) - Shares av.db curated category or tags: cli, reconnaissance, security.
- [subfinder](https://www.automicvault.com/pkg/brew/subfinder/) - Shares av.db curated category or tags: cli, reconnaissance, security.
- [theharvester](https://www.automicvault.com/pkg/brew/theharvester/) - Shares av.db curated category or tags: cli, reconnaissance, security.
- [uncover](https://www.automicvault.com/pkg/brew/uncover/) - Security-sensitive metadata or terminology overlaps. Shared terms: cli, discover, discovery, reconnaissance, security.

## Combined YAML source

View the package source record on GitHub. [combined/csprecon.yml](https://github.com/automic-vault/db/blob/main/combined/csprecon.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- cross-ecosystem install command graph
