CARD RECON 2.0.25

Running the CARD RECON CLI

Running the CARD RECON CLI executable immediately attempts a scan.

When the CARD RECON runs, it looks for these files in its directory:

  • cardrecon.cfg: default CARD RECON configuration file.
  • <license-file-name>.li2: OFFLINE LICENSE FILE; CARD RECON looks for any file ending with .li2.

If it finds any of these files in the directory that the CARD RECON executable occupies, it will try to load them when the CARD RECON runs.

The CARD RECON CLI automatically loads cardrecon.cfg when run, altering your scan configuration. If your loaded cardrecon.cfg is set up for CARD RECON to load a specific journal file, CARD RECON loads that journal file when run with cardrecon.cfg.

If you do not want to load these files when you run the CARD RECON CLI, use the -c and -journal flags OR remove these files from the directory.

For more information, see CARD RECON CLI Options.

Running the CARD RECON CLI on Windows

Locate the Windows CLI executable: cardrecon_2.0.xx.exe

There are 2 ways to run the Windows CLI.

Method 1

  1. Locate cardrecon_2.0.xx.exe in Windows Explorer.
  2. Right-click cardrecon_2.0.xx.exe, select Run as administrator and enter the administrator password if prompted.
  3. In the terminal, CARD RECON will prompt you to validate your license
  4. Log in using one of the three methods (see Logging into CARD RECON for more information):
    • Ground Labs Login.
    • Use an online token.
    • Use offline license file.

CARD RECON will with default settings – i.e. it scans all local storage with default search parameters (see Selecting Card Data Types for more information).

Method 2

  1. Click Start to open the Start Menu.
  2. Enter cmd to search for cmd.exe, or find it in Start > All Programs > Accessories > Command Prompt.
  3. Right-click cmd.exe or the Command Prompt program and select Run as administrator. Enter the administrator password if prompted.
  4. In the newly-opened Command Prompt window, navigate to the folder where your CARD RECON executable is located.

    # If your CARD RECON executable is in the Downloads folder cd c:\User\username\Downloads\

  5. To run the CARD RECON executable with default settings, issue this command:

    # Run a default scan, save a compliance report and an encrypted database journal file. cardrecon_2.0.xx.exe -j journal-filename.jnl -password-inline password

  6. CARD RECON prompts you to validate your license.
  7. Log in using one of the three methods (see Logging into CARD RECON for more information):
    • Ground Labs Login.
    • Use an online token.
    • Use offline license file.
  8. Once logged in, CARD RECON runs a scan with default settings. When the scan completes, CARD RECON automatically saves a compliance report.

Running the CARD RECON CLI on Linux and Unix-like Systems

  1. In the Terminal, locate the CARD RECON executable. E.g. cardrecon_linux26_2.0.xx.
  2. Open your terminal and run:

    chmod u+x cardrecon_linux26_2.0.xx

  3. Run the following command as root:

    # Run a default scan, save a compliance report and an encrypted database journal file. ./cardrecon_linux26_64_2.0.xx -j journal-filename.jnl -password-inline password

  4. CARD RECON prompts you to validate your license.

  5. Log in using one of the three methods (see Logging into CARD RECON for more information):
    • Ground Labs Login.
    • Use an online token.
    • Use offline license file.

If you have not assigned a license to the current TARGET, CARD RECON will return a list of licenses available in your Ground Labs Services Portal.
cr-services-license.jpeg

CARD RECON should ask you to confirm authorisation of the TARGET. For more information on CARD RECON licensing, see CARD RECON Licensing.

CARD RECON starts scanning the TARGET with default settings.

Once done, CARD RECON automatically saves a compliance report. To inspect and remediate matches found by CARD RECON, load the database journal file (e.g. journal-filename.jnl) saved by the CARD RECON CLI in the CARD RECON GUI (see Results and Remediation).

To open these files, issue the following command as administrator:

# Where <filename>.pdf is the file saved by CARD RECON that you want to open. chmod 644 <filename>.pdf