m4ll0k / Castlebravo
CastleBravo - BugBounty Automation Tool
Stars: ✭ 114
Programming Languages
python
139335 projects - #7 most used programming language
CastleBravo
CastleBravo - BugBounty Automation Tool
This repo. contains only some parts of the full version , if you want the most complete version contact me here [email protected] or via twitter
requirements
-
active dns
massdnsaltdns
-
passive dns
crobatamassassetfindergithub-subdomainssubfindersubdomain.sh
-
your telegram bot
token and chatid
installation
- download castlebravo
git clone https://github.com/m4ll0k/CastleBravo.git
- download
massdns - download and compile all tools in
passive dnsand then move them to theCastleBravo/tools/dns/passive/tools/folder- crobat
-
amass - put your
config.iniinCastleBravo/tools/dns/passive/tools/ - assetfinder
-
subfinder - put your
config.yamlinCastleBravo/tools/dns/passive/tools/ -
github-subdomains put
.tokensinCastleBravo/tools/dns/passive/tools/
setup
- edit
config.jsonthe tool is sensitive to changes in the config.json file, so to add other targets you don't need to restart it... just edit the file!
{
"inScope" : ["example.com","example1.com"],
"outScope" : ["dev.example.com","outofscope.example1.com"],
"target" : "example.com",
"projectName" : "exampleTarget",
"keys" : {
"telegramToken":"[YOUR_TELEGRAM_BOT_TOKEN]",
"chatId":"[TELEGRAM_CHATID]"
},
"dbPath" : "/db/",
"toolName" : "CastleBravoV2",
"tmpPath" : "/tmp/",
"dbExt" : ".db",
"wordlists":{
"altdnsSmall" : "/wordlist/dns/small.txt",
"altdnsMedium" : "/wordlist/dns/medium.txt",
"altdnsBig" : "/wordlist/dns/big.txt",
"massdnsResolvers" : "/wordlist/dns/resolvers.txt"
}
}
- now run it, with crontab,etc (
I suggest you to use the tool in your VPS) or or directly with python:
$ python3 castlebravo.py
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].