Tools

Osmedeus v1.5 releases: Automatic Reconnaisance and Scanning in Penetration Testing

Osmedeus

Automatic Reconnaissance and Scanning in Penetration Testing

What is Osmedeus?

Osmedeus allows you automated run the collection of awesome tools to reconnaissance and vulnerability scanning against the target.

Feature

  •  Subdomain Scan.
  •  Subdomain TakeOver Scan.
  •  Screenshot the target.
  •  Basic recon like Whois, Dig info.
  •  Web Technology detection.
  •  IP Discovery.
  •  CORS Scan.
  •  SSL Scan.
  •  Wayback Machine Discovery.
  •  URL Discovery.
  •  Headers Scan.
  •  Port Scan.
  •  Vulnerable Scan.
  •  Seperate workspaces to store all scan output and details logging.
  •  REST API.
  •  React Web UI.
  •  Support Continuous Scan.
  •  Slack notifications.
  • Easily view the report from the command line.

Changelog v1.5

  • Update UI.
  • Adding new report mode for easily view result from the command line.
  • The change default path of config and result to ~/.osmedeus/.
  • Change some routine in dirbrute module.
  • Fix a lot of bugs and refactoring a lot of things.

Installation

git clone https://github.com/j3ssie/Osmedeus
cd Osmedeus
./install.sh

This install only focus on Kali Linux, check more install on Wiki page

Use

./osmedeus.py -t example.com

List all module

./osmedeus.py -M

Update

./osmedeus.py --update

Scanning subdomain and Subdomain TakeOver

./osmedeus.py -m subdomain -t example.com

Tutorial

Demo

asciicast

Copyright (C) 2018 j3ssie 

Source: https://github.com/j3ssie/

Anastasis Vasileiadis

PC Technical || Penetration Tester || Ethical Hacker || Cyber Security Expert || Cyber Security Analyst || Information Security Researcher || Malware analyst || Malware Investigator || Reverse Engineering