GithubHelp home page GithubHelp logo

revelio's Introduction

Revelio

Revelio is a Python script which acts as a wrapper around a few tools used to enumerate a target website. The benefit with using Revelio is that it utilizes multi-threading in order to run the tools concurrently, while saving the output in a structured directory layout.

P.S Shoutout to Heath Adams for the idea!

Features

  • Locates and verifies subdomains.
  • Takes a screenshot of each domain.
  • Checks for potential subdomain takeovers.
  • Pulls archive data from the wayback machine for each subdomain.
  • Uses multi-threading for concurrency.
  • Saves the results in a structured directory tree.

Integrated Tools

Revelio combines the following GO tools:

Dependencies and Installtion Guide

First you need to have GO installed on your system. This is fairly easy to do on Kali:

sudo apt install golang-go

If this doesnt work for you, I suggest following the action plan in this medium blog post.

Next, we need to have the above listed tools installed as well. Most of them can be easily installed using Kali's apt repositories:

sudo apt install subfinder
sudo apt install assetfinder
sudo apt install httprobe
sudo apt install gowitness

In order to install waybackurls you can run the following:

go install github.com/tomnomnom/waybackurls@latest
sudo cp ~/go/bin/waybackurls /usr/local/bin

This should get you all the core tools used be revelio.

At this point you can clone the repo to you machine and install the requirements:

git clone https://github.com/DanielIsaev/revelio; cd revelio
pip install -r requirements.txt

At this point I should mention that revelio also uses the colorama Python module for colored output, If you dont want to install it on your system, I recommend setting an env and installing it there as such:

python3 -m venv py_venv
source py_venv/bin/activate
pip install -r requirements.txt

Usage

Just supply the top level domain you wish to scan, and revelio will find all it's subdomains.
(Make sure it fits the scope of your pentest)

python3 revelio.py <domain>

Here is an example usage:

example

This produces the following directory tree for the output:

tree

Here is for example, the HTML files revelio manged to find:

ext

License

This project is licensed under the MIT License so feel free to customize it further to fit your specific project details.

revelio's People

Contributors

danielisaev avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.