BitTheByte / Monitorizer
Programming Languages
Projects that are alternatives of or similar to Monitorizer
Monitorizer
The ultimate subdomain monitorization framework
Subdomain monitoring framework inspired by subalert project
Setting up the environment
You need:
- Python >= 3.6 ( python 2 is not supported )
- Linux server e.g(Amanzon EC2) [64bit]
Before we start you need to install the requirements
$ sudo pip3 install -r requirements.txt
After installing the requirements now you're ready to go
Configuration
This tool requires a slack workspace to report the findings. Additionally you can use the included acunetix integration to scan the newly discoverd domains
You need to edit the config/default.yaml
report:
slack:
channel: CM8XXXXXX
token: xoxb-XXXXXXXXXX-ZZZZZZZZZZ-YYYYYYYYYYYYYY
acunetix:
token: 63c19a6da79816b21429e5bb262daed863c19a6da79816b21429e5bb262daed8
host: acunetix.exmaple.com
port: 3443
For more information see: docs/get_started.md
$ python monitor.py -w watch_targets.txt
if everything is configured currectly to should see this message on your slack channel
Monitorizer supports more than one subdomain enumeration tool to achieve the best result
scanners = [
aiodnsbrute, # https://github.com/blark/aiodnsbrute (included)
subfinder, # https://github.com/subfinder/subfinder (included)
sublist3r, # https://github.com/aboul3la/Sublist3r (included)
dnsrecon, # https://github.com/darkoperator/dnsrecon (included)
dnscan, # https://github.com/rbsec/dnscan (included)
amass, # https://github.com/OWASP/Amass (included)
]
command lines can be found at config/default.yaml
It is also recommended to add your API keys in the config/thirdparty/*
How to run
As the script runs once everyday to need to host it on a running linux server
$ ssh [email protected]
$ ls
Monitorizer
$ cd Monitorizer
$ screen -dmS monitorizer bash -c 'python3 monitor.py -w targets.txt'
Slack Commands
Monitorizer supports slack commands by mentioning the bot
To Enable Slack commands you have to enable Event Subscriptions and set the [Request URL] to http://your_ip:6500/slack
| Command | Description | Usage |
|---|---|---|
| list | Lists all targets | @monitoizer list |
| add | Adds new target | @monitoizer add target.com or @monitoizer add target1.com, target2.com |
| remove | Remove targets | @monitoizer remove target.com or @monitoizer remove target1.com, target2.com |
| ping | Health check for the server | @monitoizer ping |
| status | Prints the current status | @monitoizer status |
| concurrent | Set/Get number of concurrent scanners | @monitoizer concurrent or @monitoizer concurrent {number} |
| acunetix | Enabled/Disable sending new discoverd targets to acunetix | @monitoizer acunetix enable or @monitoizer acunetix disable |
| freq | Set/Get scan frequency (in hours) | @monitoizer freq or @monitoizer freq {number} |
FAQ
-
Scanning may hang on some targets for a long time
- Try running the tool with
-dflag to debug the problem - Edit the
timeoutflag atconfig/default.yamlto your desired time in seconds
- Try running the tool with
-
Slack's bot app don't respond to my commands
- Check your slack bot token
- Reconfigure the tool using the docs
TODO
Full todo list is at https://github.com/BitTheByte/Monitorizer/projects/1