Automated information gathering tool for pentest
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
dics
lib
poc
thirdparty
.gitignore
README.md
config.py
drystan.py
install.py
requirements.txt

README.md

Drystan

Automated information gathering tool for pentest

v0.4a by i@cdxy.me

"Begin to explore your truths, your story, and begin to look beneath the surface." - Lucy Cavendish

How It Works

  1. explore domain information.
  2. search and enumerate subDomains/IPs.
  3. extract all IP & ports.
  4. identify service.
  5. detect vulnerability(brute & exploit).

Quick Start

Drystan is written in Python 2.7 and needs some tools/projects/modules, please install all dependencies first:
python install.py

It can be run from any unix/Linux machine, best run from Kali-Linux.
python drystan.py -h

You can modify the system settings manually by editing the config file:
vi config.py

Tools Already Included

  1. domain info
  • dig
  • whois
  • nslookup
  • theHarvester
  1. subdomains
  • Sublist3r
  • subDomainsBrute
  1. class C Network
  • BingC
  1. port scan
  • nmap
  1. intrusive scan
  • nmap-scripts
  • msf-exploits
  1. bruteforce
  • hydra
  1. web application
  • BBScan
  • WebSOC
  • pocscan