A python3 script, which automate my scans :)
Introduction • Requirements • Installation • Acunetix API key • Usage • Thanks
This tool is made to automate the different tools that I use. It took a URL as input and start detecting technologies/waf/open ports, crawl the URL and retrieve URLs from many sources, parse the data, js related scans and active scan (acunetix/nuclei).
- python3 (sudo apt install python3)
- pip3 (sudo apt install python3-pip)
- Go (>=1.17)
- Docker
- Firefox
git clone https://github.com/Liodeus/lioscan
cd lioscan
pip install -r requirements.txt
python lioscan.py -i
git clone https://github.com/Liodeus/lioscan
cd lioscan
# Create a virtual env
python3 -m venv .venv
# Activate the virtual env
. .venv/bin/activate
pip install -r requirements.txt
python lioscan.py -i
I'm using uro to parse some data and uro remove all .pdf extensions. I don't like this behavior so I made some change in the code, as follow :
# Find the script
locate uro.py
# Mine was located here
/usr/local/lib/python3.8/dist-packages/uro/uro.py
# Edit the file
vim /usr/local/lib/python3.8/dist-packages/uro/uro.py
Remove the "pdf", from the variable "static_exts" (line 13 at the time of redaction), then save.
NOT FUNCTIONNAL YET !
docker build . -t liodeus
docker run -it liodeus /bin/bash
Once the installation process is finished (cf. Installation), you need to get your API key from the acunetix docker.
- Go to https://localhost:3443/
- Default credentials :
- email -> contact@manhtuong.net
- password -> Abcd1234
- You should now be connected. Go to the "Profile" page
- Scroll to the "API Key" part
- Then click on copy
- You know have your API key for Acunetix :)
- Default credentials :
_ _
| | (_)
| | _ ___ ___ ___ __ _ _ __
| | | | / _ \ / __| / __| / _` || '_ \
| |____| || (_) |\__ \| (__ | (_| || | | |
\_____/|_| \___/ |___/ \___| \__,_||_| |_|
usage: lioscan.py [-h] [-u URL] [-o OUT] [-a APIKEY] [-i]
optional arguments:
-h, --help show this help message and exit
-u URL, --url URL URL to scan
-o OUT, --out OUT Output directory
-a APIKEY, --apikey APIKEY
Acunetix API key
-i, --install Install all tools
python3 lioscan.py -u https://example.com
# Activate the virtual env
. .venv/bin/activate
python3 lioscan.py -u https://example.com
python3 lioscan.py -u https://example.com -a API_KEY
# Activate the virtual env
. .venv/bin/activate
python3 lioscan.py -u https://example.com -a API_KEY
Thanks to :
- HaxUnit, for the idea and code about acunetix
- @technoo10201 for the virtual env and the docker image
- Different creator of the tool that I use