-
Notifications
You must be signed in to change notification settings - Fork 0
Instructions for use
Ensure you've met all the dependencies in the Requirements page before you start with installation.
Before use, run 'setup.sh' which will ask you for the path to the IP-Travellers-Toolkit directory on your system. Once done, the path to the Toolkit will be defined in all modules.
The script can then be run with the command: bash toolkit.sh
It is advised to cd into the IP-Travellers-Toolkit directory before executing toolkit.sh, otherwise it will cause problems when running the VNC module.
Once run and a module has been selected, you'll be asked to enter an IP address or range to be scanned.
You also need to set a rate to scan at. A slow rate would be 10 packets per second, whereas a fast one will be 10000.
Example range input is 90.0.0.0/8 - this will scan every IP in that range
To scan the entire Internet enter 0.0.0.0/0 (This will take a LONG time on standard connections)
All Positive and Negative results will be saved in log files in the Results directory, which is also used by the Toolkit for temporary files, which are written to disk for small periods of time before deletion.
Scripts such as VNC will save an addition log file (vnc-log.txt) and screenshots in the form of .jpgs to the Results directory.
You and/or your ISP will almost certainly receive many abuse reports from people who claim your scans are malicious. To appease their concerns, and to avoid your IP address range from being blacklisted, you can add an IP address or range to an Exclude list.
This is located within the Results directory, inside exclude.txt. The Exclude list will accept single IP addresses as well as ranges.
By default 255.255.255.255 is in the exclude list, it is recommended this stays in as without it you won't be able to scan the 0.0.0.0/0 subnet (i.e. the whole Internet). This is a restriction added by Masscan.
1 - Most scans will take hours/days/weeks to complete depending on how big the IP range you're scanning is and how fast your Internet connection is. To keep the session open, it's highly recommended you install and use Screen so you don't have to keep your Terminal open, and it makes it easier for running multiple scans at once.
2 - To stop the script midway through an IP range scan, quit the script in the usual manner (Ctrl+X on most systems, then re-run the script and enter the loopback IP 127.0.0.1 so the script looks for servers on the IP addresses it detected in the last scan. This is a way of running a quick scan without waiting days/weeks.
$ cat emby-positives.log POSITIVE MATCH: There is an accessible Emby server at 192.168.0.4