Fire and forget script automating the finding of targets vulnerabilities.
Usage:
./thedumbpentester [domain.com/IP/companyname/maintenance] [targetmode:company/domain/ip] [scanmode] [*web*] [*user wordlist*] [*password wordlist*] [*openVASurl:port*] [*openVASuser*] [*openVASpassword*] [*debug*] [*noadditionalbrute*]
- Everything should be automatic.
- Only open source tools used.
- Report contains only useful information for direct exploitation.
As the report function is currently under development, you can inspect results of the script in folder /root/.dumbpentester/attackeddomain.com/
Organisation:
- ips.lst : main IPs list
- domains.csv : subdomains found
- userdir/ : users, emails and passwords found
- vulndir/ : vulnerabilities found
- outputdir/ : results of all the tools used
git clone ./thedumbpentester.sh maintenance
Getting only reconnaissance data
./thedumbpentester.sh yourdomainz.xxx domain recononly
Fast scan and web pentest
./thedumbpentester.sh yourdomainz.xxx domain fast web
Default scan
./thedumbpentester.sh yourdomainz.xxx
Stealth scan
./thedumbpentester.sh yourdomain.xxx domain stealth
Basically this script wraps and pipes around other various pentest tools if you feed it a target.
DNS
dig fierce dnsrecon subbrute
OSINT / DORKS
sublist3r harvester recon-ng
WEBSITES
crt.sh hackertarget netcraft viewdns
SCAN
masscan nmap traceroute
VULNERABILITY
nmapNSE searchsploit pompem
BRUTE
nmapNSE hydra SecLists
WEB SCAN
dirb whatweb arachni sqlmap
REPORT
grep zenmap firefox