Web-eyes - OSINT tools for website research

Last update: Nov 10, 2022

Related tags

Security related resources web-eyes

Overview

WEB-EYES V1.0

web-eyes: OSINT tools for website research, 14 research methods are available:

HINFO: HTTP HEADERS SCANNER
HSECURE: HTTP SECURITY HEADERS SCANNER
WEBTECH: WEBSITE TECHNOLOGY LOOKUP
WHOIS: WHOIS LOOKUP
RWHOIS: REVERSE WHOIS LOOKUP
IPHISTORY: IP HISTORY LOOKUP
DNSLOOK: DNS RECORDS LOOKUP
SUBDOMAINS: SUBDOMAINS SCANNER
CERTFILE: CERTIFICATE LOOKUP
IPLOOK: IP ADDRESS LOOKUP
RIPLOOK: REVERSE IP ADDRESS LOOKUP
RDNSLOOK: REVERSE DNS LOOKUP
TCPSCAN: TCP PORTS SCANNER
UDPSCAN: UDP PORTS SCANNER

HINFO: HINFO [URL] => HINFO [https://example.com]
HSECURE: HSECURE [URL] => HSECURE [https://example.com]
WEBTECH: WEBTECH [DOMAIN] => WEBTECH [example.com]
WHOIS: WHOIS: WHOIS [DOMAIN] => WHOIS [example.com]
RWHOIS: RWHOIS: RWHOIS [DOMAIN] => RWHOIS [example.com]
IPHISTORY: IPHISTORY: IPHISTORY [DOMAIN] => IPHISTORY [example.com]
DNSLOOK: DNSLOOK [DOMAIN] => DNSLOOK [example.com]
SUBDOMAINS: SUBDOMAINS [DOMAIN] => SUBDOMAINS [example.com]
CERTFILE: CERTFILE [DOMAIN] => CERTFILE [example.com]
IPLOOK: IPLOOK [IP] => IPLOOK [1.1.1.1]
RIPLOOK: RIPLOOK [DOMAIN, IP] => RIPLOOK [https://example.com, 1.1.1.1]
RDNSLOOK: RDNSLOOK [IP] => RDNSLOOK [1.1.1.1]
TCPSCAN: TCPSCAN [IP] [PORT => COMMON, OWN] => TCPSCAN [1.1.1.1] [COMMON, 80]
UDPSCAN: UDPSCAN [IP] [PORT => COMMON, OWN] => UDPSCAN [1.1.1.1] [COMMON, 80]

Prerequisites

apt-get install python3

pip3 install requests

pip3 install dnspython

Install

git clone https://github.com/r4bin/web-eyes.git
cd web-eyes
chmod +x web-eyes.py
./web-eyes.py

or

git clone https://github.com/r4bin/web-eyes.git
cd web-eyes
python3 web-eyes.py

Owner

GitHub Repository

log4j-tools: CVE-2021-44228 poses a serious threat to a wide range of Java-based applications

log4j-tools Quick links Click to find: Inclusions of log4j2 in compiled code Calls to log4j2 in compiled code Calls to log4j2 in source code Overview

171 Dec 25, 2022

Use scrapli to retrieve security zone information from a Juniper SRX firewall

Get Security Zones with Scrapli Overview This example will show how to retrieve security zone information on Juniper's SRX firewalls. In addition to t

2 Jun 19, 2022

CVE-2021-43798Exp多线程批量验证脚本

Grafana V8.*任意文件读取Exp--多线程批量验证脚本漏洞描述 Grafana是一个开源的度量分析与可视化套件。经常被用作基础设施的时间序列数据和应用程序分析的可视化，它在其他领域也被广泛的使用包括工业传感器、家庭自动化、天气和过程控制等。其 8.*版本任意文件读取漏洞，该漏洞目前为0d

2 Dec 16, 2021

D-810 is an IDA Pro plugin which can be used to deobfuscate code at decompilation time by modifying IDA Pro microcode.

Introduction fork from https://gitlab.com/eshard/d810 What is D-810 D-810 is an IDA Pro plugin which can be used to deobfuscate code at decompilation

30 Dec 06, 2022

BloodyAD is an Active Directory Privilege Escalation Framework

BloodyAD Framework BloodyAD is an Active Directory Privilege Escalation Framework, it can be used manually using bloodyAD.py or automatically by combi

757 Jan 07, 2023

domato but as a website

ROFL-FUZZER Ths is Domato, a DOM Fuzzer from Google, but hosted as an website It generates a instance of a newtab on the template given by the user ,

18 Nov 22, 2021

Python tool for enumerating directories and for fuzzing

Python tool for enumerating directories and for fuzzing

5 Feb 21, 2022

Kriecher is a simple Web Scanner which will run it's own checks for the OWASP

Kriecher is a simple Web Scanner which will run it's own checks for the OWASP top 10 https://owasp.org/www-project-top-ten/# as well as run a

1 Nov 12, 2021

Generate MIPS reverse shell shellcodes easily !

MIPS-Reverse MIPS-Reverse is a tool that can generate shellcodes for the MIPS architecture that launches a reverse shell where you can specify the IP

29 Jul 27, 2021

AmiEviL - This program uses the Virus Total API to determine if your suspicious file is malicious or not

AmiEviL - This program uses the Virus Total API to determine if your suspicious file is malicious or not. The program requests the hash of the file and outputs information (if any). This version will

1 Jan 03, 2022

A honeypot for the Log4Shell vulnerability (CVE-2021-44228)

Log4Pot A honeypot for the Log4Shell vulnerability (CVE-2021-44228). License: GPLv3.0 Features Listen on various ports for Log4Shell exploitation. Det

79 Dec 27, 2022

Tools Crack Fb Terbaru

Tools Crack Fb Terbaru

12 Jan 06, 2022

CVE-2022-22965 : about spring core rce

CVE-2022-22965: Spring-Core-Rce EXP 特性: 漏洞探测(不写入 webshell，简单字符串输出) 自定义写入 webshell 文件名称及路径不会追加写入到同一文件中，每次检测写入到不同名称 webshell 文件支持写入冰蝎 webshell 代理支持，可

53 Nov 09, 2022

Strapi Framework Vulnerable to Remote Code Execution

CVE-2019-19609 Strapi Framework Vulnerable to Remote Code Execution well, I didnt found any exploit for CVE-2019-19609 so I wrote one. :/ Usage pytho

7 Mar 08, 2022

Files related to PoC||GTFO 21:21 - NSA’s Backdoor of the PX1000-Cr

Files related to PoC||GTFO 21:21 - NSA’s Backdoor of the PX1000-Cr 64bit2key.py

15 Nov 26, 2022

Obfuscate ip address using different encodings

ipobfuscator How it works? Single ip address can be written in multiple ways. The most popular way is to represent ip as 4 octets separated with dots.

1 Nov 02, 2021

EyeJo是一款自动化资产风险评估平台，可以协助甲方安全人员或乙方安全人员对授权的资产中进行排查，快速发现存在的薄弱点和攻击面。

EyeJo EyeJo是一款自动化资产风险评估平台，可以协助甲方安全人员或乙方安全人员对授权的资产中进行排查，快速发现存在的薄弱点和攻击面。免责声明本平台集成了大量的互联网公开工具，主要是方便安全人员整理、排查资产、安全测试等，切勿用于非法用途。使用者存在危害网络安全等任何非法行为，后果自负，作

429 Dec 31, 2022

⛤Keylogger Generator for Windows written in Python⛤

⛤Keylogger Generator for Windows written in Python⛤

33 Nov 24, 2022

This repository consists of the python scripts for execution and automation of vivid tasks.

Scripting.py is a repository being maintained to keep log of the python scripts that I create for automating and executing some of my boring manual task.

1 Feb 07, 2022

RCE Exploit for Gitlab < 13.9.4

GitLab-Wiki-RCE RCE Exploit for Gitlab 13.9.4 RCE via unsafe inline Kramdown options when rendering certain Wiki pages Allows any user with push acc

52 Nov 09, 2022