Skip to content

meldridge/DarkEnumeration

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
darkenum.py
darkenum.py
 
 
http.py
http.py
 
 
mssql.py
mssql.py
 
 
mysql.py
mysql.py
 
 
samba.py
samba.py
 
 
smtp.py
smtp.py
 
 
snmp.py
snmp.py
 
 
ssh.py
ssh.py
 
 

Repository files navigation

DarkEnumeration Automated enumeration

This set of scripts were written in the hopes to alleviate manual enumeration processes. The logic of the script is as follows:

  1. Do not actually exploit or automatically obtain footholds to a system.
  2. Test all 65,535 ports utilizing Unicornscan (currently doesn't support threading, waiting for Unicornscan to follow nmap's footsteps in that regard)
  3. Once Unicornscan completes:
    • Take those ports and run a far more intrusive nmap scan on each service/port (standard implementations, only).
    • Multi-process the nmap scan so they can be done simultaneously.
    • launch each standalone python script against each standard service/port found.
  4. Each new script/tool that is launched, does so in a new terminal to keep things clean - not all windows will remain open (i.e. those with output flags/redirection that do not break the script).
  5. Thoroughly investigate all output and any errors, bugs or otherwise should be manually investigated by you.

Please do not use this script in any publications (blogs, tutorials, etc...) without giving credit to myself; this script will be useful to many and I'm very proud of my work - thanks.

(In addition, if you modify/update or otherwise fix these scripts please send any suggested fixes or tweaks that you've made to it, to me, so that it can be reflected in this repository so others can benefit.)

Try-Harder! and use Google to ask for help - cause Offensive Security won't help you and I may not have the time to help, either.

#Installation for certain scripts to work:

  1. All scripts MUST be in /root/Scripts/
  2. Go to http://itsecurity.net/ and download http://itsecurity.net/debian_ssh_scan_v4.tar.bz2
  3. Unzip debian_ssh_scan_v4.tar.bz2 into /root/Scripts/debian_ssh_scan_v4 (/root/Scripts/debian_ssh_scan_v4/debian_ssh_scan_v4.py target should execute the script)
  4. have fun

#Understanding usage darkenum.py runs off of your sweep attempts, so long as you output your cleaned 'livehosts' file to /tmp/ ./darkenum.py <-- no system arguments needed #WARNING: This script is pretty hefty, I do NOT recommend running it on anymore than 4 systems at any one time.

About

Automated enumeration

Resources

Readme

License

GPL-3.0 license
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%