All Projects → j3ssie → Osmedeus

j3ssie / Osmedeus

Licence: mit
Fully automated offensive security framework for reconnaissance and vulnerability scanning

Programming Languages

python
103659 projects - #7 most used programming language
shell
51189 projects

Projects that are alternatives of or similar to Osmedeus

Rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+1.42%)
Mutual labels:  osint, security-tools, reconnaissance, information-gathering, penetration-testing, bugbounty, scanning
Hosthunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (-87.41%)
Mutual labels:  osint, hacking, security-tools, penetration-testing, hacking-tool, reconnaissance, bugbounty
Scilla
🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration
Stars: ✭ 116 (-96.58%)
Mutual labels:  hacking, security-tools, penetration-testing, hacking-tool, reconnaissance, information-gathering
Raccoon
A high performance offensive security tool for reconnaissance and vulnerability scanning
Stars: ✭ 2,312 (-31.82%)
Mutual labels:  osint, hacking, hacking-tool, pentest-tool, reconnaissance, information-gathering
Awesome Bbht
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Stars: ✭ 190 (-94.4%)
Mutual labels:  hacking, security-tools, penetration-testing, hacking-tool, reconnaissance, bugbounty
Evillimiter
Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.
Stars: ✭ 764 (-77.47%)
Mutual labels:  hacking, security-tools, penetration-testing, hacking-tool, pentest-tool
Favfreak
Making Favicon.ico based Recon Great again !
Stars: ✭ 564 (-83.37%)
Mutual labels:  osint, hacking, reconnaissance, information-gathering, bugbounty
Nosqlmap
Automated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (-43.14%)
Mutual labels:  hacking, security-tools, penetration-testing, hacking-tool, bugbounty
Oneforall
OneForAll是一款功能强大的子域收集工具
Stars: ✭ 4,202 (+23.92%)
Mutual labels:  osint, subdomain, pentest-tool, information-gathering, bugbounty
Dirsearch
Web path scanner
Stars: ✭ 7,246 (+113.68%)
Mutual labels:  hacking, penetration-testing, hacking-tool, bugbounty, pentest-tool
Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (-46.21%)
Mutual labels:  hacking, security-tools, penetration-testing, hacking-tool, scanning
AttackSurfaceManagement
Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty
Stars: ✭ 45 (-98.67%)
Mutual labels:  osint, penetration-testing, bugbounty, hacking-tool, reconnaissance
Vhostscan
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Stars: ✭ 767 (-77.38%)
Mutual labels:  hacking, security-tools, penetration-testing, hacking-tool, bugbounty
Interlace
Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Stars: ✭ 760 (-77.59%)
Mutual labels:  hacking, security-tools, penetration-testing, hacking-tool, bugbounty
Discover
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
Stars: ✭ 2,548 (-24.86%)
Mutual labels:  osint, penetration-testing, reconnaissance, information-gathering, scanning
aquatone
A Tool for Domain Flyovers
Stars: ✭ 43 (-98.73%)
Mutual labels:  osint, penetration-testing, bugbounty, hacking-tool, reconnaissance
Minesweeper
A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
Stars: ✭ 162 (-95.22%)
Mutual labels:  hacking, security-tools, penetration-testing, hacking-tool, bugbounty
Badkarma
network reconnaissance toolkit
Stars: ✭ 353 (-89.59%)
Mutual labels:  hacking, penetration-testing, pentest-tool, reconnaissance, information-gathering
Crithit
Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (-94.63%)
Mutual labels:  hacking, security-tools, penetration-testing, hacking-tool, bugbounty
Pentesting Bible
Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
Stars: ✭ 8,981 (+164.85%)
Mutual labels:  osint, hacking, hacking-tool, information-gathering, bugbounty

Osmedeus

python Software License tested Release Demo

What is Osmedeus?

Architecture

Osmedeus allows you automated run the collection of awesome tools to reconnaissance and vulnerability scanning against the target.

Next generation version?

huntersuite

Enjoying this tool? Support it's development and take your game to the next level by using HunterSuite.io

Installation

git clone https://github.com/j3ssie/Osmedeus
cd Osmedeus
./install.sh

This install only focus on Kali linux, check more install on Usage page.

NOTE: You might need to do sudo su before install or using this otherwise you might get issues with dependency problems.

Using Docker

Check out docker-osmedeus by mabnavarrete

How to use

If you have no idea what are you doing just type the command below or check out the Advanced Usage

./osmedeus.py -t example.com

Features

  • Subdomain Scan.
  • Subdomain TakeOver Scan.
  • Screenshot the target.
  • Basic recon like Whois, Dig info.
  • Web Technology detection.
  • IP Discovery.
  • CORS Scan.
  • SSL Scan.
  • Wayback Machine Discovery.
  • URL Discovery.
  • Headers Scan.
  • Port Scan.
  • Vulnerable Scan.
  • Seperate workspaces to store all scan output and details logging.
  • REST API.
  • React Web UI.
  • Support Continuous Scan.
  • Slack notifications.
  • Easily view report from commnad line.

Check this Documentation for more detail about each module.

Love Osmedeus? Back it!

If you love my tool and would like to support my work. Become a backer and you will appear here. Backers

Demo

asciicast

Web UI 1

Web UI 3

Web UI 2

Example Commands

# normal routine
./osmedeus.py -t example.com
./osmedeus.py -T list_of_target.txt

# normal routine but slow speed on all moddule
./osmedeus.py -t example.com --slow 'all'

# normal routine but exclude some modules
./osmedeus.py -t example.com -x 'linkfinding,dirb'

# direct mode examples
./osmedeus.py -m subdomain -t example.com
./osmedeus.py -m portscan -i "1.2.3.4/24"

./osmedeus.py -m "portscan,vulnscan" -i "1.2.3.4/24" -w result_folder

# direct list mode examples
./osmedeus.py -m portscan -I list_of_targets.txt
./osmedeus.py -m portscan,vulnscan -I list_of_targets.txt
./osmedeus.py -m screen -I list_of_targets.txt -w result_folder

# report mode
./osmedeus.py -t example.com --report list
./osmedeus.py -t example.com --report export
./osmedeus.py -t example.com --report sum
./osmedeus.py -t example.com --report short
./osmedeus.py -t example.com --report full

What to do next after do recon? Check out my scanner Jaeles.

Disclaimer

Most of this tool done by the authors of the tool that list in CREDITS.md. I'm just put all the pieces together, plus some extra magic.

This tool is for educational purposes only. You are responsible for your own actions. If you mess something up or break any laws while using this software, it's your fault, and your fault only.

Credits

Please take a look at CREDITS.md

Changelog

Please take a look at CHANGELOG.md

Contributors

If you have some new idea about this project, issue, feedback or found some valuable tool feel free to open an issue for just DM me via @j3ssiejjj.

Code Contributors

This project exists thanks to all the people who contribute. [Contribute].

Financial Contributors

Become a financial contributor and help us sustain our community. [Contribute]

Individuals

Organizations

Support this project with your organization. Your logo will show up here with a link to your website. [Contribute]

Stargazers over time

Stargazers over time

Donation

paypal

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected]