/lachesis

👨‍💻 A work-in-progress web services mass scanner written in Rust
rust mass scanner masscan webservice vulnerability
  1. Rust 86.2%
  2. JavaScript 9.6%
  3. Shell 1.9%
  4. CSS 1.3%
  5. HTML 1.0%
Find file
Clone or download

Clone with HTTPS

Use Git or checkout with SVN using the web URL.

Open in Desktop Download ZIP

Launching GitHub Desktop...

If nothing happens, download GitHub Desktop and try again.

Launching GitHub Desktop...

If nothing happens, download GitHub Desktop and try again.

Launching Xcode...

If nothing happens, download Xcode and try again.

Launching Visual Studio...

If nothing happens, download the GitHub extension for Visual Studio and try again.

Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.vscode Removed explicit multithreading (useless now that all the requests ar… Dec 16, 2018
db Hello world Jun 9, 2018
dist Dist dir Jan 4, 2019
logs Hello world Jun 9, 2018
resources Removed the pre-included Web UI build, updated readme, gitignore file… Jan 17, 2019
scripts Removed the pre-included Web UI build, updated readme, gitignore file… Jan 17, 2019
src [WEB-UI] Tab layout Jan 18, 2019
.gitignore Removed the pre-included Web UI build, updated readme, gitignore file… Jan 17, 2019
Cargo.lock Lachesis Web UI first commit (WIP): Rocket webserver/api, base React … Jan 13, 2019
Cargo.toml Lachesis Web UI first commit (WIP): Rocket webserver/api, base React … Jan 13, 2019
LICENSE Initial commit Jun 8, 2018
README.md Removed --print-records flag Jan 17, 2019

README.md

Lachesis

Lachesis is a work in progress web services mass scanner written in Rust.

This project was born as a simple test of the Rust's networking (and asynchronous I/O) performance, but later expanded with the intention to create a sort of "little personal Shodan", an open (and hopefully very fast) crawler that exposes the magnitude of outdated, vulnerable, misconfigured services publicly accessible around the web.

-------------8<-------------
.          .                 
|  ,-. ,-. |-. ,-. ,-. . ,-. 
|  ,-| |   | | |-' `-. | `-. 
`' `-^ `-' ' ' `-' `-' ' `-'
                      v0.1.0
-------------8<-------------

Lachesis v0.1.0
Michele Federici (@ps1dr3x) <michele@federici.tech>

USAGE:
    lachesis [FLAGS] [OPTIONS] --dataset <FILE> --subnet <SUBNET>... --web-ui

FLAGS:
    -v, --debug      Print debug messages
    -h, --help       Prints help information
    -V, --version    Prints version information
    -w, --web-ui     Serve a web app (and a basic API) to visualize/explore collected data

OPTIONS:
    -D, --dataset <FILE>        The full path of the DNS dataset used for the requests. The accepted format is:
                                
                                {"name":"example.com","type":"a","value":"93.184.216.34"}
                                {"name":"example.net","type":"a","value":"93.184.216.34"}
                                {"name":"example.org","type":"a","value":"93.184.216.34"}
                                
                                An example of a compatible dataset is the forward DNS dataset by Rapid7
                                (https://opendata.rapid7.com/sonar.fdns_v2/)
                                 
    -d, --def <FILE>...         Default: all the files in resources/definitions
                                 
                                Multiple definitions can be selected (eg. --def wordpress --def vnc)
                                Accepted formats are:
                                  File name with or without extension (eg. vnc.json or vnc). The json file will be
                                searched in directory resources/definitions/
                                  Full/relative path to file (eg. resources/definitions/vnc.json or
                                /casual_path/mydef.json)
                                  
    -m, --max-targets <NUM>     
    -S, --subnet <SUBNET>...    Scan one or more subnets

Roadmap / TODOs

  • Optimise https, http and tcp requests to minimize unnecessary overheads
  • Add much more definitions
  • Expand the scanner's capabilities to other configurations and scanning methods
  • Do some information gathering on the host after each finding
  • Improve the API and the Web UI (a geo map would be nice)

Build from source

Dependencies

Compile and run (development)

Web UI

If you don't intend to work on the Web UI (front end) part, you can do this only once. If you don't intend to use the Web UI, this can be skipped.

cd src/ui
npm install
npm run build # or npm run watch

Lachesis

cargo run -- --help

Production build (Web UI + Lachesis)

./scripts/build-release.sh