GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → oppsec → juumla

oppsec / juumla

Licence: MIT license
🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.

Programming Languages

python
139335 projects - #7 most used programming language
Dockerfile
14818 projects

Labels

dockertoolscannerjoomlainfosecpentesthacktoberfestred-teamblue-team

Projects that are alternatives of or similar to juumla

tugarecon
Pentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+32.71%)
Mutual labels:  scanner, infosec, pentest
github-watchman
Monitoring GitHub for sensitive data shared publicly
Stars: ✭ 60 (-43.93%)
Mutual labels:  infosec, red-team, blue-team
sx
🖖 Fast, modern, easy-to-use network scanner
Stars: ✭ 1,267 (+1084.11%)
Mutual labels:  scanner, infosec, pentest
dorothy
Dorothy is a tool to test security monitoring and detection for Okta environments
Stars: ✭ 85 (-20.56%)
Mutual labels:  infosec, red-team, blue-team
Dumpsterfire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
Stars: ✭ 775 (+624.3%)
Mutual labels:  infosec, pentest, red-team
Xattacker
X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 897 (+738.32%)
Mutual labels:  scanner, joomla, pentest
Cloakify
CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection
Stars: ✭ 1,136 (+961.68%)
Mutual labels:  infosec, pentest, red-team
Snoop
Snoop — инструмент разведки на основе открытых данных (OSINT world)
Stars: ✭ 886 (+728.04%)
Mutual labels:  scanner, infosec, pentest
haiti
🔑 Hash type identifier (CLI & lib)
Stars: ✭ 287 (+168.22%)
Mutual labels:  infosec, pentest
NIST-to-Tech
An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
Stars: ✭ 61 (-42.99%)
Mutual labels:  infosec, pentest
DcRat
A simple remote tool in C#.
Stars: ✭ 709 (+562.62%)
Mutual labels:  infosec, red-team
rejig
Turn your VPS into an attack box
Stars: ✭ 33 (-69.16%)
Mutual labels:  infosec, pentest
Rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+3114.02%)
Mutual labels:  scanner, infosec
PyParser-CVE
Multi source CVE/exploit parser.
Stars: ✭ 25 (-76.64%)
Mutual labels:  infosec, pentest
volana
🌒 Shell command obfuscation to avoid detection systems
Stars: ✭ 38 (-64.49%)
Mutual labels:  infosec, pentest
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
Stars: ✭ 2,079 (+1842.99%)
Mutual labels:  infosec, pentest
flydns
Related subdomains finder
Stars: ✭ 29 (-72.9%)
Mutual labels:  infosec, pentest
sgCheckup
sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
Stars: ✭ 77 (-28.04%)
Mutual labels:  scanner, infosec
magicRecon
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (+346.73%)
Mutual labels:  scanner, infosec
polscan
Zero-setup SSH-based scanner with extensive visualizations for Debian server inventory, policy compliance and vulnerabilities
Stars: ✭ 57 (-46.73%)
Mutual labels:  scanner, infosec
View All Similar Projects ➔

🦁 Juumla



🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.


Installing / Getting started

A quick guide on how to install and use Juumla. 

1. Clone the repository - git clone https://github.com/oppsec/juumla.git
2. Install the libraries - pip3 install -r requirements.txt
3. Run Juumla - python3 main.py -u https://example.com

🐳 Docker

If you want to run Juumla in a Docker container, follow these commands:

1. Clone the repository - git clone https://github.com/oppsec/juumla.git
2. Build the image - sudo docker build -t juumla:latest .
3. Run container - sudo docker run juumla:latest



⚙️ Pre-requisites

  • Python 3 installed on your machine.
  • Install the libraries with pip3 install -r requirements.txt



Features

  • Fast scan
  • Low RAM and CPU usage
  • Detect Joomla version
  • Find config and backup files
  • Scan for vulnerabilities based on the Joomla version
  • Open-Source



📚 To-Do

  • Update vulnerabilities database
  • Improve Joomla detection methods
  • Improve code optimization



🔨 Contributing

A quick guide on how to contribute to the project.

1. Create a fork from Juumla repository
2. Download the project with git clone https://github.com/your/juumla.git
3. Make your changes
4. Commit and makes a git push
5. Open a pull request



⚠️ Warning

  • The developer is not responsible for any malicious use of this tool.
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].