-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathOriginal_script
89 lines (80 loc) · 3.98 KB
/
Original_script
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
#!/bin/bash
# Color variables
red='\033[0;31m'
green='\033[0;32m'
yellow='\033[0;33m'
blue='\033[0;34m'
magenta='\033[0;35m'
cyan='\033[0;36m'
# Clear the color after that
clear='\033[0m'
echo -e "\033[1;31m
,---,
.' .' \`\\
,---.' \\ ,---. ,---. ,----,
| | .\`\\ | ' ,'\\ ' ,'\\ .' .\`|
: : | ' | / / | / / | .' .' .' .--,
| ' ' ; :. ; ,. :. ; ,. :,---, ' ./ /_ ./|
' | ; . |' | |: :' | |: :; | .' / , ' , ' :
| | : | '' | .; :' | .; :\`---' / ;--,/___/ \\: |
' : | / ; | : || : | / / / .\`| . \\ ' |
| | '\` ,/ \\ \\ / \\ \\ / ./__; .' \\ ; :
; : .' \`----' \`----' ; | .' \\ \\ ;
| ,.' \`---' : \\ \\
'---' \\ ' ;
\`--\`
\033[0m"
echo "++++++++++++++++++++++++++++++++++++++++++++++++++++++++"
echo " Enumeration made easier with the Doozy Enumerator"
echo "++++++++++++++++++++++++++++++++++++++++++++++++++++++++"
echo
echo -e "${green}For cheatsheets and more: https://navkang.github.io/Doozy${clear}"
echo
echo -e "${red}====================================================================================================${clear}"
echo
echo -e "${yellow}Enter the target URL or IP address:${clear} "
read target
echo
echo -e "${red}====================================================================================================${clear}"
echo
echo -e "${green}..........Starting nmap scan..........${clear}"
echo
# run the first nmap scan and store the results
ports=$(nmap -p- --min-rate=1000 -T4 $target | grep ^[0-9] | cut -d '/' -f 1 | tr '\n' ',' | sed s/,$//)
# display the results of the first nmap scan
echo -e "${blue}These are the open ports for the host: $ports ${clear}"
echo -e "${yellow}-------------------------------------------------------------------------${clear}"
# run the second nmap scan with the specified options
nmap -p$ports -sV -sC $target > nmap_results.txt
cat nmap_results.txt
echo
echo -e "${red}====================================================================================================${clear}"
echo
echo -e "${green}..........Starting gobuster scan..........${clear}"
echo
gobuster dir -u $target -w /usr/share/wordlists/dirb/common.txt | grep "Status: 200\|Status: 301\|Status: 302"
echo
echo
echo -e "${green}Please note you may need to run additional gobuster scans: see below${clear}"
echo "gobuster dir -u $target -w /usr/share/wordlists/SecLists/Discovery/Web-Content/directory-list-lowercase-2.3-small.txt"
echo -e "${green}Also consider using -x to search for extensions (ie .txt .php)${clear}"
echo
echo -e "${red}====================================================================================================${clear}"
echo
echo -e "${green}..........Starting ffuf virtual host scan..........${clear}"
echo
ffuf -w /usr/share/wordlists/SecLists/Discovery/DNS/subdomains-top1million-5000.txt -u http://$target -H "Host: FUZZ.$target"
echo
echo -e "${red}====================================================================================================${clear}"
echo -e "${green}..........Starting nikto scan..........${clear}"
echo
echo -e "${green}Please note the Nikto scan can take some time - you can press CTRL c to exit the scan${clear}"
echo
nikto -host $target
echo
echo -e "${red}====================================================================================================${clear}"
echo
echo "Scans complete,thank you for using The Doozy Enumerator"
echo -e "${red}====================================================================================================${clear}"
echo
echo -e "${red}WARNING: Please ensure you have the correct permissions to use this tool against your target. Otherwise it can land you in big trouble!${clear}"