sysgather - Linux Gather Information Tool
| Version | Devel |
|---|---|
| Homepage | # |
| Github | https://github.com/dogasantos/sysgather |
| Documentation | https://github.com/dogasantos/sysgather/wiki |
| Code Documentation | soon... |
| Author | Douglas S Santos |
| @dogasantos | |
| date | 2010 |
| License | GNU GPL |
sysgather is an open source tool designed to help pentesters on a post-intrusion information gathering process.
Gather information during a post-shell phase on a pentest.
Keep it simple
Current supporting Standard grepable and planned xml format, both printed on standar output.
base64 code: Nibble And A Half project page https://github.com/superwills/NibbleAndAHalf
Core Itens
- Processor info
- Memory and load average
- Mount points with special flags (nosuid,noexec,nfs shares,credentials, others)
- Kernel version, compilation date, architecture
- Kernel Metrics (Page Size, Child Max, Open Max, Stream Max, Phys Pages, Avphys Pages and others)
- Libc Version and release
- Gcc version
- Linux distro
Network Itens
- Ipv4 address and cidr prefix on all interfaces
- Ipv6 address and cidr prefix on all interfaces
- Nameservers
- Routing table
- Router capability state
- Open TCP and UDP ports
Security Itens
- Apparmor presence and state
- Selinux presence and state
- ASCII-Armor presence
- GrSec presence
- Pax Presence
- Hids and Nids Presence
- Suid Dumpable state
- ASLR state
- Minimal address map value
- List all suid files
- List all writable files
- List all writable directories
- List interesting files (htaccess, "password" named files, "users" named files, and others)
- Ssh Keys
Services Itens
- Ssh configuration
- Snmp configuration
- Sudoers configuration
- Available cronjobs
- List all running process
Mic Userspace Itens
- Current user (to keep record)
- Current bash_history interesting lines
- Current mysql_history interesting lines
- /etc/shadow interesting lines
none, this is a dead project.