/ Tanpa Label / discover

Senin, 09 Mei 2016

discover

For use with Kali Linux. Custom bash scripts used to automate various pentesting tasks.

Licence

This project is licensed under the BSD 3-clause “New” or “Revised” License. For more information please see the licence file

Download, setup & usage

  • git clone git://github.com/leebaird/discover.git /opt/discover/
  • All scripts must be ran from this location.
  • cd /opt/discover/
  • ./setup.sh
  • ./discover.sh
RECON1.  Domain2.  Person3.  Parse salesforceSCANNING4.  Generate target list5.  CIDR6.  List7.  IP or domainWEB8.  Open multiple tabs in Iceweasel9.  Nikto10. SSLMISC11. Crack WiFi12. Parse XML13. Start a Metasploit listener14. Update15. Exit

RECON

Domain

RECON1.  Passive2.  Active3.  Previous menu
  • Passive combines goofile, goog-mail, goohost, theHarvester, Metasploit, dnsrecon, URLCrazy, Whois and multiple webistes.
  • Active combines Nmap, dnsrecon, Fierce, lbd, WAF00W, traceroute and Whatweb.

Person

RECONFirst name:Last name:
  • Combines info from multiple websites.

Parse salesforce

Create a free account at salesforce (https://connect.data.com/login).Perform a search on your target company > select the company name > see all.Copy the results into a new file.Enter the location of your list:
  • Gather names and positions into a clean list.

SCANNING

Generate target list

SCANNING1.  Local area network2.  NetBIOS3.  netdiscover4.  Ping sweep5.  Previous menu
  • Use different tools to create a target list including Angry IP Scanner, arp-scan, netdiscover and nmap pingsweep.

CIDR, List, IP or domain

Type of scan: 1.  External2.  Internal3.  Previous menu
  • External scan will set the nmap source port to 53 and the max-rrt-timeout to 1500ms.
  • Internal scan will set the nmap source port to 88 and the max-rrt-timeout to 500ms.
  • Nmap is used to perform host discovery, port scanning, service enumeration and OS identification.
  • Matching nmap scripts are used for additional enumeration.
  • Matching Metasploit auxiliary modules are also leveraged.

WEB

Open multiple tabs in Iceweasel

Open multiple tabs in Iceweasel with:1.  List2.  Directories from a domain's robot.txt.3.  Previous menu
  • Use a list containing IPs and/or URLs.
  • Use wget to pull a domain's robot.txt file, then open all of the directories.

Nikto

Run multiple instances of Nikto in parallel.1.  List of IPs.2.  List of IP:port.3.  Previous menu

SSL

Check for SSL certificate issues.Enter the location of your list:
  • Use sslscan and sslyze to check for SSL/TLS certificate issues.

MISC

Crack WiFi

  • Crack wireless networks.

Parse XML

Parse XML to CSV.1.  Burp (Base64)2.  Nessus3.  Nexpose4.  Nmap5.  Qualys6.  Previous menu

Start a Metasploit listener

  • Setup a multi/handler with a windows/meterpreter/reverse_tcp payload on port 443.

Update

  • Use to update Kali Linux, Discover scripts, various tools and the locate database.

Bagikan

Jangan lewatkan

discover
4/ 5
Oleh
Komentar

Subscribe via email

Suka dengan artikel di atas? Tambahkan email Anda untuk berlangganan.

Langganan: Posting Komentar (Atom)